2 matches found
CVE-2021-38883
CVE-2021-38883 affects IBM Business Automation Workflow (versions 18.0.0.x, 19.0.0.x, 20.0.0.x, 21.0.x) and IBM Business Process Manager (8.5.x, 8.6.x). Root cause: cross-site scripting via the Web UI due to lack of sufficient data validation/filtering of user-supplied data during the file upload...
Security Bulletin: Cross Site Scripting when uploading a file might affect IBM Business Automation Workflow - CVE-2021-38883
Summary IBM Business Automation Workflow may be vulnerable to a cross site scripting attack when uploading a file. Vulnerability Details CVEID: CVE-2021-38883 DESCRIPTION: IBM Business Automation Workflow is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary...