A vulnerability was found in openises Tickets up to 3.44.1 . It has been classified as problematic . This impacts an unknown function of the file add_nm.php . Performing a manipulation of the argument ticket_id results in cross site scripting. This vulnerability is known as CVE-2026-48214 . Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.