Skip to main content
Sign up or Log in
Support
Training
 Documentation
Evaluation Guide
What's New
Documentation
OutSystems Platform 10
Reference
Errors and Warnings
Warnings
Open Redirect Warning

Reference

 

OutSystems

Open Redirect Warning

  1. Last updated
  2. Save as PDF
Message
Enclose the input parameters with a ReplaceURLDomain() function from HttpRequestHandler to avoid open redirect vulnerabilities.
Cause
The input parameter mentioned in the warning has a value that comes from the end-user input and that is susceptible to contain a malicious URL.
Recommendation

Do one of the following:

  • Use the ReplaceURLDomain() function from the HTTPRequestHandler extension module to enclose the value of the parameter;
  • Replace the 'External Site' element with a well-known page in your application;
  • Replace the 'External Site' element with another 'External Site' element that does not receive a URL as an input and that redirects to a static URL instead.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. There are no recommended articles.
  1. Classifications
    This page has no classifications.
  2. Tags
    This page has no tags.