beenull/adminerevo
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Uses own XSS protection

Browse source
This commit is contained in:
Jakub Vrana 2010-10-20 22:27:51 +02:00
parent cb153ac0d1
commit 0f3a525801
2 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
adminer/include/adminer.inc.php
View file

@ -37,6 +37,7 @@ class Adminer {
*/ */
function headers() { function headers() {
header("X-Frame-Options: deny"); // ClickJacking protection in IE8, Safari 4, Chrome 2, Firefox NoScript plugin header("X-Frame-Options: deny"); // ClickJacking protection in IE8, Safari 4, Chrome 2, Firefox NoScript plugin
header("X-XSS-Protection: 0"); // prevents introducing XSS in IE8 by removing safe parts of the page
} }
/** Print login form /** Print login form

1
editor/include/adminer.inc.php
View file

@ -28,6 +28,7 @@ class Adminer {
function headers() { function headers() {
header("X-Frame-Options: deny"); header("X-Frame-Options: deny");
header("X-XSS-Protection: 0");
} }
function loginForm() { function loginForm() {