mirror/php-adminer
1
0
Fork 0
mirror of https://github.com/vrana/adminer.git synced 2025-08-08 07:36:44 +02:00
Code Issues Releases Wiki Activity

Add nosniff header

Browse Source
This commit is contained in:
Jakub Vrana
2018-01-09 11:04:02 +01:00
parent d07b7e3773
commit 415253b1b1
3 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
adminer/include/design.inc.php
View File

@@ -90,6 +90,7 @@ function page_headers() {
if ($adminer->headers()) {
header("X-Frame-Options: deny"); // ClickJacking protection in IE8, Safari 4, Chrome 2, Firefox 3.6.9
header("X-XSS-Protection: 0"); // prevents introducing XSS in IE8 by removing safe parts of the page
header("X-Content-Type-Options: nosniff");
header("Referrer-Policy: origin-when-cross-origin");
}
}

1
changes.txt
View File

@@ -1,4 +1,5 @@
Adminer 4.3.2-dev:
Add nosniff header
PHP 7.1: Prevent warning when using empty limit
MySQL: Remove dedicated view for replication status (added in 4.3.0)
PostgreSQL: Sort table names (regression from 4.3.1)

1
plugins/frames.php
View File

@@ -22,6 +22,7 @@ class AdminerFrames {
header("X-Frame-Options: SameOrigin");
}
header("X-XSS-Protection: 0");
header("X-Content-Type-Options: nosniff");
header("Referrer-Policy: origin-when-cross-origin");
return false;
}