# Host Header Injection (Authentication Bypass)

- [Python - HttpOnly Session Hijacking XSS](/asvs-write-ups/host-header-injection-authentication-bypass/python-httponly-session-hijacking-xss.md)