Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a URL /cgi-bin endpoint. The URL parameters are not correctly sanitized, leading to reflected XSS.
CPE | Name | Operator | Version |
---|---|---|---|
control_room_management_suite | lt | 3.14.1 |