/vulndb/X-Frame-Options Error

The X-Frame-Options header is inactive and therefore no security enhancements were enforced.

Solution

Check the server configuration or the application source code for configuration or programming errors, which may lead to X-Frame-Options field not being properly set.

References

https://developer.mozilla.org/en/The_X-FRAME-OPTIONS_response_header https://www.owasp.org/index.php/Clickjacking