Severity: Medium

Description: SAS Web Report Studio contains a CSRF vulnerability when using method=GET.

Potential Impact: An attacker might cause users to perform unexpected actions.