How to prevent the Open Redirect vulnerability with the next parameter in Flask
Let’s say someone codes a url like this: http://domain.com/do/something?next=http://domain.com/homepage Now an attacker can craft the url like that: http://domain.com/do/something?next=http://evildomain.com/homepage If you don’t sanitise the next, your user will be taken to the evil site. This is the Open Redirect vulnerability. That’s why you must make sure urls are safe. You do it like that: from …
How to prevent the Open Redirect vulnerability with the next parameter in Flask Read More »