Jazo

**Name of the Vulnerable Software and Affected Versions** Tenancy multi-tenant versions prior to 5.7.2 **Description** The issue allows for open redirects, where users can be redirected from the site to any other site using a specially crafted URL. This occurs in installations using the default Hostname Identification and tenants with `force https` set to `true`. **Recommendations** For versions prior to 5.7.2, update to version 5.7.2 to fix the bug. As a temporary workaround, consider setting the `force https` to `false` for every tenant, however, this may degrade connection security.