Severity: Medium

Description: SAS^® Fraud Management does not sufficiently sanitize input.

Potential Impact: SAS Fraud Management web application processes untrusted data without sufficient validation. As a result, users might unknowingly execute malicious code.