A vulnerability, which was classified as problematic, was found in PHP Jabbers Car Rental Script 3.0. Affected is an unknown function. The manipulation of the argument name/plugin_sms_api_key/plugin_sms_country_code/calendar_id/title/country name/customer_name leads to cross site scripting.
This vulnerability is traded as CVE-2023-48836. It is possible to launch the attack remotely. There is no exploit available.