<-- Back

Version disclosure in mxui.js file

Introduction

This article addresses whether the version information exposed in the mxui.js file of Mendix applications poses a security vulnerability.

Environment

Applications hosted in Mendix Cloud

Details

The mxui.js file is static file that is shipped with the Mendix runtime, meaning all applications on the same runtime version use the same file.

Mendix does not consider the exposure of version information in the mxui.js file to be a security vulnerability, as it does not inherently compromise the backend security of the application.

Internal information related

  • 272618
  • G01EQTEP83G/p1772093437204049, CJZ85RLTA/p1772096348834369

Additional information

Security FAQ

 

 

Have more questions? Submit a request

0 Comments

Article is closed for comments.

To provide feedback, please open a ticket here. Don't forget to include the article's URL along with the feedback you would like to provide.