# Exploit Title: Car Rental Script-2.0.8 has Stored XSS via FirstName and LastName.
# Date: 29.07.2018
# Site Titel :Car Rental – Travel Booking Script
# Vendor Homepage: https://www.phpscriptsmall.com/
# Software Link : https://www.phpscriptsmall.com/product/car-rental-script/
# Category: Web Application
# Version: 2.0.8
# Exploit Author: Vikas Chaudhary
# Published on : https://gkaim.com/cve-2018-15182-vikas-chaudhary/
# Contact: https://gkaim.com/contact-us/
# Web: https://gkaim.com/
# Tested on: Windows 10 -Firefox
# CVE: CVE-2018-15182
## VENDOR SUMMARY :- PHP Scripts Mall Pvt. Ltd. is a professional software selling portal offering wide range of innovative.
PHP Scripts Mall is a leading business and technology firm with 12 years of successful track record
in completion and implementation of numerous projects in various verticals and domains..
It has 300 plus PHP scripts ready to buy.
## VULNERABILITY DESCRIPTION :- Cross-Site Scripting (XSS) attacks are a type of injection, in which
malicious scripts are injected into otherwise benign and trusted websites.
XSS attacks occur when an attacker uses a web application to send malicious code,
Attacker can Change the web interface or can dedirect to Admin or User to any malicious Link.
Proof Of Concept:-
1. Go to the site
2- Login page and then Sign Up
3- Create an account using your mail and password and put this script in given parameters
First Name => “><img src=x onerror=prompt(/VIKAS/)>
Last Name => “><img src=x onerror=prompt(/CHAUDHARY/)>
5 – Click on SignUp
6 – Now login using your mail and password
7 – when you loged in , you will have two popup /VIKAS/ and /CHAUDHARY/ in your account.