diff --git a/find_a_supplier/tests/test_views.py b/find_a_supplier/tests/test_views.py
index e7784f36..7dfdc10b 100644
--- a/find_a_supplier/tests/test_views.py
+++ b/find_a_supplier/tests/test_views.py
@@ -467,6 +467,15 @@ def test_contact_company_exposes_context(mock_get_company_profile, client):
     )
 
 
+@mock.patch('django.utils.http.url_has_allowed_host_and_scheme')
+def test_unsafe_url_redirect(mock_url_has_allowed_host_and_scheme, client):
+    mock_url_has_allowed_host_and_scheme.return_value = False
+    url = reverse('find-a-supplier:search')
+    response = client.get(url, {'term': 'http://example.com'})
+    assert response.status_code == 302
+    assert response.url == reverse('find-a-supplier:search')
+
+
 @mock.patch('find_a_supplier.views.CompanySearchView.get_results_and_count')
 def test_company_search_submit_form_on_get(mock_get_results_and_count, client, search_results):
     results = [{'number': '1234567', 'slug': 'thing'}]