Dolibarr 11.0 allows XSS via the joinfiles, topic, or code parameter, or the HTTP Referer header.
dolibarr dolibarr erp\\/crm 11.0.0