IBM Business Automation Workflow is a workflow automation solution from IBM Corporation. The product is primarily used for workflow management, compliance management, and features workflow visibility and scalability.IBM Business Automation Workflow suffers from a cross-site scripting vulnerability that stems from the softwareβs lack of effective validation and escaping of user-submitted request parameters. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI to change the intended functionality, potentially leading to credential disclosure in trusted sessions.