A security vulnerability was discovered in mashup expressions that enables a user to execute code without authorization. The mashups provided with DPM use functions and widgets which do not have this vulnerability. When you are creating custom mashups, ensure that you use secure expressions.

For information on the widgets and functions which support custom expressions and are affected by this vulnerability, as well as the steps to find and fix them in your custom mashups, see Replacing Non-Secure Expressions in a Mashup in the ThingWorx Help Center.