Host Header Injection (Authentication Bypass)

Python - HttpOnly Session Hijacking XSS
PreviousJava - GraphQL MutationsNextPython - HttpOnly Session Hijacking XSS