Open Redirect

An Open Redirect is a web application Vulnerability that occurs when an application allows unvalidated redirection to external URLs based on user input. This can be Exploited by attackers to redirect users to malicious sites, facilitating Phishing attacks, Malware distribution, or other malicious activities.

Open Redirects occur when user-controlled input is used to construct URLs that determine where a user is redirected. If this input is not validated or properly sanitised, attackers can manipulate the URL to redirect users to a malicious destination. While redirects can be legitimate in web applications, they must be strictly controlled to prevent misuse.

The purpose of Exploiting an Open Redirect is typically to deceive users into visiting malicious sites, such as Phishing pages that mimic legitimate websites. By Exploiting trusted domains, attackers can make their malicious links appear more credible, increasing the likelihood of user interaction and compromise.

Open Redirect vulnerabilities are Exploited by crafting URLs with manipulated parameters that direct users to unintended locations. For example, an attacker may create a link that appears to redirect through a trusted site but ultimately sends the user to a malicious site. Preventing Open Redirects involves validating user input, using allowlists for redirects, and avoiding the use of user-controlled input for redirection logic.

Examples of Open Redirects include a web application that allows a URL parameter to control redirection without validation, leading to URLs such as 'https://trustedsite.com/redirect?url=http://malicioussite.com'. When a user clicks the link, they are redirected to the malicious site, potentially leading to credential theft or Malware infections.

Open Redirects can lead to security issues such as Phishing attacks and loss of user trust. Organisations should validate and sanitise user input, use relative URLs for internal redirection, and implement proper redirection logic to minimise the risk of Exploitation. Regular security testing can help identify and fix Open Redirect vulnerabilities.