In Dolibarr 10.0.6, if USER_LOGIN_FAILED is active, there is a stored XSS vulnerability on the admin tools --> audit page. This may lead to stealing of the admin account.Referenceshttps://fatihhcelik.blogspot.com/2020/04/dolibarr-stored-xss.html
