Skip to main content

 

 

 

Template:OutSystems/Documentation_KB/Breadcrumb_New_Layout
Documentation
OutSystems 10
Reference
Errors and Warnings
Warnings
Open Redirect Warning
Warnings

 

Template:OutSystems/OSLanguageSwitcher
Language:
English|日本語

 

 

 

 

 
OutSystems

Open Redirect Warning

  1. Last updated
  2. Save as PDF
Message
Enclose the input parameters with a ReplaceURLDomain() function from HttpRequestHandler to avoid open redirect vulnerabilities.
Cause
The input parameter mentioned in the warning has a value that comes from the end-user input and that is susceptible to contain a malicious URL.
Recommendation

Do one of the following:

  • Use the ReplaceURLDomain() function from the HTTPRequestHandler extension module to enclose the value of the parameter.
  • Replace the 'External Site' element with a well-known page in your application.
  • Replace the 'External Site' element with another 'External Site' element that does not receive a URL as an input and that redirects to a static URL instead.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
    Owner
    TechComm
  2. Tags
    This page has no tags.