So after brain stomring of ways to exploit this vulnerability, the only way i was able to exploit it is by buying two vehicles with one token, however i was unable to find a way to buy a vehicle +35k because of if gui["_root"] then return end. the serverside has no return false and it continues directly to giving the player the car even when exceptions happen similar to an old bug that enabled players to buy cars with no bankmoney. this code should fix it
So after brain stomring of ways to exploit this vulnerability, the only way i was able to exploit it is by buying two vehicles with one token, however i was unable to find a way to buy a vehicle +35k because of
if gui["_root"] then return end
. the serverside has noreturn false
and it continues directly to giving the player the car even when exceptions happen similar to an old bug that enabled players to buy cars with no bankmoney. this code should fix it