A vulnerability classified as problematic was found in openises Tickets up to 3.44.1 . The impacted element is an unknown function of the file ics214.php of the component Request Handler . The manipulation of the argument frm_add_str results in cross site scripting. This vulnerability is cataloged as CVE-2026-48224 . The attack may be launched remotely. There is no exploit available. Upgrading the affected component is advised.