Barco Control Room is a visualization and collaboration solution from Barco Belgium. Used to build control rooms, a cross-site scripting vulnerability exists in the Barco Control Room Management Suite web application prior to version 3.14. The vulnerability stems from the FileUploadRequestProcessor.upload endpoint type parameter not being properly cleaned, which can be exploited by an attacker to vulnerability can be exploited to execute JavaScript code on the client side.