A vulnerability described as problematic has been identified in openises tickets up to 3.44.1 . This vulnerability affects unknown code of the file search.php of the component Request Handler . The manipulation of the argument frm_query results in cross site scripting. This vulnerability is known as CVE-2026-35016 . It is possible to launch the attack remotely. No exploit is available. Upgrading the affected component is recommended.