CVE-2017-12460
Barco ClickShare CSM-1 firmware prior to 1.7.0.3 and CSC-1 firmware prior to 1.10.0.10 are affected. An authenticated user can manage the wallpaper collection via the webUI and, by uploading a wallpaper with a specially crafted name, trigger HTML injection due to non-neutralized output. Impact is...