Hemant Kashyap

1 exploit Active since Apr 2022
CVE-2022-24181 EXPLOITDB MEDIUM text WRITEUP
PKP Open Journals System >=2.4.8 - XSS
Cross-site scripting (XSS) via Host Header injection in PKP Open Journals System 2.4.8 >= 3.3 allows remote attackers to inject arbitary code via the X-Forwarded-Host Header.
CVSS 6.1