Collabtive version 2.0 suffers from a stored cross site scripting vulnerability.
51dbb48d16f19915093f913e78a13762366a085517ff044dcbe854adf5fca212
# Affected software: collabtive
# Type of vulnerability: stored xss
# URL: http://www.collabtive.o-dyn.de/
# Discovered by: Provensec
# Website: http://www.provensec.com
# Description: collabtive stored xss
#version:2.0
# Proof of concept
goto Collabtive add new project with xss payload and save it
javascript will execute
#online demo http://www.opensourcecms.com/scripts/details.php?scriptid=100&name=Collabtive
#screen http://prntscr.com/69z1vw