A vulnerability identified as problematic has been detected in openises Tickets up to 3.44.1 . This affects an unknown part of the file ics202.php of the component Request Handler . This manipulation of the argument frm_add_str causes cross site scripting. The identification of this vulnerability is CVE-2026-48219 . It is possible to initiate the attack remotely. There is no exploit available. You should upgrade the affected component.