Cross-site scripting (XSS) via Host Header injection in PKP Open Journals System 2.4.8 >= 3.3 allows remote malicious users to inject arbitary code via the X-Forwarded-Host Header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
public knowledge project open journal systems |