To mitigate open redirect flaws like this, the Cybernews team advises website owners to validate all user input, including URLs, to ensure that the input contains only legitimate values. This can involve using regular expressions to verify proper URL formats, checking the validity of URLs from trusted domains, and confirming that URLs do not contain unexpected or malicious characters.
URL encoding is another effective method to prevent the injection of malicious characters into URLs, thereby thwarting threat actors attempting to exploit open redirect vulnerabilities, even if they exist on the website.