X Frame Options - Printable Version

The following warnings occurred:

Warning [2] Undefined variable $unreadreports - Line: 26 - File: global.php(961) : eval()'d code PHP 8.2.25 (Linux)

File	Line	Function
/global.php(961) : eval()'d code	26	errorHandler->error
/global.php	961	eval
/printthread.php	16	require_once

X Frame Options - Printable Version

+- UserSpice (https://userspice.com/forums)
+-- Forum: Support Center (https://userspice.com/forums/forumdisplay.php?fid=23)
+--- Forum: UserSpice 4.3 and Below (https://userspice.com/forums/forumdisplay.php?fid=26)
+--- Thread: X Frame Options (/showthread.php?tid=962)

X Frame Options - shoropio - 02-20-2018

Hello everyone, someone could tell me that the function has this line.

Code:
<?php header('X-Frame-Options: DENY'); ?>

X Frame Options - mudmin - 02-20-2018

We do a 3rd party security audit every few versions and it was found that earlier versions could be subject to clickjacking. That header option is one mitigation. https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options

X Frame Options - shoropio - 02-20-2018

It's a security issue, I understand. I have seen this out there but not in all the pages, it is ok as well or I incorporate it into my header.php so that it is present in the whole site.

X Frame Options - mudmin - 02-20-2018

Absolutely.

X Frame Options - shoropio - 02-20-2018

Perfect, muchas gracias.