Web application security - the fast guide 1.1

Chapter 3 - Vulnerabilities and threat models P a g e | 59 3.8.10 Invalidated Redirects and Forwards: application should be able to check all redirections and prevent any redirection to any site or url that is not whitelisted by this application. Any poor validation for redirection information might cause sending user to phished or malicious sites.