CVE-2026-35013 | openises tickets up to 3.44.1 URL street_view.php cross site scripting

Inserito da Angelo Barbosa | Mag 20, 2026 | CVE

A vulnerability was found in openises tickets up to 3.44.1. It has been classified as problematic. Affected is an unknown function of the file street_view.php of the component URL Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2026-35013. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is recommended.

CVE-2026-35013 | openises tickets up to 3.44.1 URL street_view.php cross site scripting

Post correlati

CVE-2024-2472 | LatePoint Plugin up to 4.9.9 on WordPress authorization

CVE-2020-26067 | Cisco Webex Teams Web-based Interface cross site scripting (cisco-sa-webex-teams-xss-zLW9tD3)

CVE-2025-11681 | M-Files Server up to 25.6.14925.0 gRPC resource consumption

CVE-2025-5434 | Aem Solutions CMS up to 1.0 /page.php ID sql injection