Home / os / wins2003

Collabtive 2.0 Cross Site Scripting

Posted on 27 February 2015

# Affected software: collabtive # Type of vulnerability: stored xss # URL: http://www.collabtive.o-dyn.de/ # Discovered by: Provensec # Website: http://www.provensec.com # Description: collabtive stored xss #version:2.0 # Proof of concept goto Collabtive add new project with xss payload and save it javascript will execute #online demo http://www.opensourcecms.com/scripts/details.php?scriptid=100&name=Collabtive #screen http://prntscr.com/69z1vw

 

TOP