A vulnerability was found in openises tickets up to 3.44.1 . It has been classified as problematic . Affected is an unknown function of the file street_view.php of the component URL Handler . This manipulation causes cross site scripting. This vulnerability is tracked as CVE-2026-35013 . The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is recommended.