IBM Business Automation Workflow Cross-Site Scripting Vulnerability (CNVD-2022-15537)

IBM Business Automation Workflow is a workflow automation solution from IBM USA. The product is primarily used for workflow management, compliance management, and features workflow visibility and scalability.IBM Business Automation Workflow has a security vulnerability that stems from the vulnerability of IBM Business Automation Workflow to stored cross-site scripting. An attacker could exploit the vulnerability to allow users to embed arbitrary JavaScript code in the Web UI to alter the intended functionality, which could lead to credential disclosure in trusted sessions.