CVE-2026-35012 | openises tickets up to 3.44.1 URL add_facnote.php ticket_id cross site scripting

Inserito da Angelo Barbosa | Mag 20, 2026 | CVE

A vulnerability was found in openises tickets up to 3.44.1 and classified as problematic. This impacts an unknown function of the file add_facnote.php of the component URL Handler. The manipulation of the argument ticket_id results in cross site scripting.

This vulnerability is identified as CVE-2026-35012. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-35012 | openises tickets up to 3.44.1 URL add_facnote.php ticket_id cross site scripting

Post correlati

CVE-2026-3132 | Master Addons for Elementor Premium Plugin up to 2.1.3 on WordPress render_preview Remote Code Execution

CVE-2024-34478 | btcd up to 0.23.x data authenticity

CVE-2024-13081 | PHPGurukul Land Record System 1.0 /admin/contactus.php Page Description cross site scripting

CVE-2024-42613 | Pligg CMS 2.0.2 cross-site request forgery