← All Status Codes
302
Found
↪️ Redirection Low Risk

📖 What Is HTTP 302?

The resource temporarily resides at a different URL. Unlike 301, search engines should keep the original URL. Browsers may change POST to GET on redirect.

🛡️ Security Implications

Same open redirect risk as 301. Also, POST-to-GET conversion can cause security issues if sensitive data was in the POST body.

🔍 Common Causes

Temporary redirect (login redirect, A/B testing, geolocation-based routing, maintenance page).

🔧 How to Fix

Use 307 instead of 302 if you need to preserve the HTTP method. Validate redirect URLs against a whitelist.

🖥️ How to Check

curl -I -o /dev/null -w "%{http_code}" https://example.com

🔗 Related Redirection Codes

301
Moved Permanently
303
See Other
304
Not Modified
307
Temporary Redirect
308
Permanent Redirect
📚 Learn Web Security — Free Course