If you develop a web application, you should treat user-supplied data as untrusted. Hire ASP.Net developer for your project as ASP.NET Core has introduced built-in features that help protect applications from open redirect attacks:

LocalRedirect: This helper method throws an exception from the controller base class when a non-local URL is detected. Otherwise, it works exactly like the redirect method.

IsLocalUrl: This method allows you to test URLs before redirecting them. It protects users from being inadvertently redirected to a malicious website.

You can use the LocalRedirect() method to prevent the attack. If a non-local URL is specified, an exception is thrown.