If the redirections are improperly handled, they often lead to open redirection attacks. However, if the number of redirection attempts is not implemented, it can cause a redirection loop, leading to an application-level denial of service and resource exhaustion attack.