CVE-2017-17907
PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
Date published : 2017-12-25
https://github.com/d4wner/Vulnerabilities-Report/blob/master/Car-Rental-Script.md