cpe:/a:sas:web_infrastructure_platform:9.4:- cpe:/a:sas:web_infrastructure_platform:9.4:maintenance_release_1 cpe:/a:sas:web_infrastructure_platform:9.4:maintenance_release_2 cpe:/a:sas:web_infrastructure_platform:9.4:maintenance_release_3 cpe:/a:sas:web_infrastructure_platform:9.4:maintenance_release_4 cpe:/a:sas:web_infrastructure_platform:9.4:maintenance_release_5 CVE-2015-9281 2019-01-16T20:29:00.247-05:00 2019-01-24T16:28:29.557-05:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2019-01-23T13:42:48.443-05:00 MISC http://support.sas.com/kb/55/537.html Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout page.