A new update is available for SAS BI Report Services , version 4.4_M4 :
SAS Note 62876 | SAS® Web Report Studio images contain a cross-site scripting vulnerability |
This list of notes might be incomplete. For a complete list of issues addressed by this hot fix, visit the hot fix page for A5J011 |
Note: A comprehensive list of all SAS hot fixes is available from support.sas.com. You can use the SAS Hot Fix Analysis, Download, and Deployment (SASHFADD) tool to manage your SAS hot fixes.