Description
htdocs/user/passwordforgotten.php in Dolibarr 10.0.6 allows XSS via the Referer HTTP header.
Remediation
References
Related Vulnerabilities
WordPress Plugin Style It Cross-Site Scripting (1.0)
Craft CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-30130)
WordPress Plugin Brute Force Login Protection Unspecified Vulnerability (1.5)
WordPress Plugin Ivory Search-WordPress Search Cross-Site Scripting (4.6)