A new update is available for SAS Environment Manager , version 2.5_M1 :
|SAS Note 60695|
A cross-site scripting vulnerability exists in the SAS® Environment Manager middle tier
|This list of notes might be incomplete. For a complete list of issues addressed by this hot fix, visit the hot fix page for B2P001|
Note: A comprehensive list of all SAS hot fixes is available from support.sas.com. You can use the SAS Hot Fix Analysis, Download, and Deployment (SASHFADD) tool to manage your SAS hot fixes.