logo

Multiple X-Frame-Options Header Entries

  • Risk:
  • Medium

  • Type:
  • Passive
Summary

X-Frame-Options (XFO) headers were found, a response with multiple XFO header entries may not be predictably treated by all user-agents.

Solution

Ensure only a single X-Frame-Options header is present in the response.

References

https://tools.ietf.org/html/rfc7034

Free security scan for your website