IBM Sterling B2B Integrator Cross-Site Scripting Vulnerability (CNVD-2023-05238)

IBM Sterling B2B Integrator is a suite of software from International Business Machines (IBM) that integrates critical B2B processes, transactions and relationships. The software supports secure integration of complex B2B processes with different partner communities.IBM Sterling B2B Integrator Standard Edition versions 6.0.0.0 through 6.1.2.1 contain a cross-site scripting vulnerability that stems from a lack of effective filtering and escaping of user-supplied data, which could be exploited by an attacker to The vulnerability stems from the lack of effective filtering and escaping of user-supplied data, which could be exploited to embed arbitrary JavaScript code in the Web UI to alter the intended functionality and cause credential disclosure in trusted sessions.