DolphinPhp is a set of Php rapid development framework based on ThinkPhp 5.1.34 Lts. A cross-site scripting vulnerability exists in DolphinPHP 1.5.0 and prior versions, which stems from the programβs lack of data validation filtering of user-supplied and output data. An attacker could exploit the vulnerability to execute JavaScript code on the client side.