Google’s John Mueller mentioned on Twitter that Google “typically recommends not protecting open redirects.”
An open redirect is when a parameter values (the portion of URL after “?”) in an HTTP GET request enable for info that can redirect a consumer to a brand new web site with none validation of the goal of redirect. This will lead your web site to permitting redirects to any URLs on the internet, even malware.
John Mueller defined that if somebody does exploit your open redirects, it may well lead Google search to flag your web site and probably take away it from search. John mentioned “if somebody have been to redirect to malware or phishing content material by your web site, then the URLs in your web site would lead there, and might be flagged.”
The ironic factor is final yr Google was caught with this exploit. The reality is, typically a developer can implement this and you then overlook about it and earlier than you realize it, your web site is being utilized by unscrupulous folks to harm others. Google could notify you’ve these points by way of Google Search Console, by the way in which.
However nonetheless, you wish to attempt to be on high of this earlier than it turns into a difficulty.
Discussion board dialogue at Twitter.