Barco Control Room is a visualization and collaboration solution from Barco Belgium. Used to build control rooms, a cross-site scripting vulnerability exists in Barco Control Room prior to version 3.14. The vulnerability stems from the os_username parameter of the /checklogin.jsp endpoint not being cleaned up properly, which could be exploited by an attacker to execute JavaScript code on the client side.