Announcement

Collapse
No announcement yet.
X
  • Filter
  • Time
Clear All
new posts

    Security Vulnerability as the properties and js files are visible in browser

    Hi,

    A malicious user enters the following URL https://host:port/context/isomorphic/locales/frameworkMessages.properties in the address bar of the browser and clicks on the 'Enter' button: The file is visible in the browser. Similarly other files like javascript files are visible. Is there anything that can be done to prevent this ? Also, is there any harm is showing these files to anonymous users.


    Please reply.

    #2
    Of course not. The .properties file you refer to is string constants and error messages, which, like the JavaScript code, is the same for any application deployed on our product, and is free for anyone to download from smartclient.com.

    Comment


      #3
      Thank you.

      Comment

      Working...
      X