CRLF Injection — HTTP Response Splitting

RedirectorApp builds a Location header from the user-supplied URL parameter. The value is concatenated into the header without sanitization. Inject CRLF (\r\n) sequences to insert a malicious header that sets a session cookie.