source.dussan.org Git - nextcloud-server.git/commit

]> source.dussan.org Git - nextcloud-server.git/commit

projects / nextcloud-server.git / commit

author	Thomas Mueller <thomas.mueller@tmit.eu>
	Mon, 14 May 2012 13:34:28 +0000 (15:34 +0200)
committer	Thomas Mueller <thomas.mueller@tmit.eu>
	Mon, 14 May 2012 13:34:28 +0000 (15:34 +0200)
commit	bda2dbec1f45b3aaed93ade98553e71cf1911d68
tree	4887045d23954cf67214097cae775939967bbcfc	tree \| snapshot
parent	0c8740c1d598a4b37af59bfd3e7e4f0c8a58e513	commit \| diff

Prevent Clickjacking by adding additional headers:
                header('X-Frame-Options: Sameorigin');
                header('X-XSS-Protection: 1; mode=block');
                header('X-Content-Type-Options: nosniff');

Thanks to Lukas Reschke for reporting this issue (and many more).

lib/template.php

diff | blob | history

Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server

RSS Atom