A vulnerability, which was classified as problematic , has been found in openises Tickets up to 3.44.1 . This affects an unknown function of the file landb.php of the component Request Handler . This manipulation of the argument _type causes cross site scripting. This vulnerability is registered as CVE-2026-48225 . Remote exploitation of the attack is possible. No exploit is available. It is advisable to upgrade the affected component.