A vulnerability classified as problematic has been found in openises Tickets up to 3.44.1 . The affected element is an unknown function of the file ics213rr.php of the component Request Handler . The manipulation of the argument frm_add_str leads to cross site scripting. This vulnerability is listed as CVE-2026-48223 . The attack may be initiated remotely. There is no available exploit. It is recommended to upgrade the affected component.