Multiple X-Frame-Options Header Entries
- Risk:
Medium
- Type:
- Passive
- CWE:
- 1021
- Summary
- X-Frame-Options (XFO) headers were found, a response with multiple XFO header entries may not be predictably treated by all user-agents.
- Solution
- Ensure only a single X-Frame-Options header is present in the response.
- References