Was going through my server scripts looking for vulnerabilities, recently patched one for another script, and found one in qb-truckrobbery. Using XV-Dev tool to trigger events using the lua executor, i found that this can be triggered no matter what and you can just keep giving yourself money & bank security cards. even though whilst using the latest qb-truckrobbery there's distance checks it doesn't seem to really do anything.
Describe the bug
Was going through my server scripts looking for vulnerabilities, recently patched one for another script, and found one in qb-truckrobbery. Using XV-Dev tool to trigger events using the lua executor, i found that this can be triggered no matter what and you can just keep giving yourself money & bank security cards. even though whilst using the latest qb-truckrobbery there's distance checks it doesn't seem to really do anything.
Exploitable Event
TriggerServerEvent("AttackTransport:graczZrobilnapad", LootTime)
To Reproduce Steps to reproduce the behavior:
Expected behavior
Screenshots
https://cdn.discordapp.com/attachments/1036106897054511145/1071531857969160252/Screenshot_3.png
Questions (please complete the following information):
qb-
to something custom? NopeAdditional context N/A