summaryrefslogtreecommitdiff
path: root/themes/wind/views/page.html.php
diff options
context:
space:
mode:
Diffstat (limited to 'themes/wind/views/page.html.php')
-rw-r--r--themes/wind/views/page.html.php5
1 files changed, 3 insertions, 2 deletions
diff --git a/themes/wind/views/page.html.php b/themes/wind/views/page.html.php
index 24d3347e..c3e212c5 100644
--- a/themes/wind/views/page.html.php
+++ b/themes/wind/views/page.html.php
@@ -1,4 +1,5 @@
<?php defined("SYSPATH") or die("No direct script access.") ?>
+<?php header("X-Frame-Options: SAMEORIGIN"); ?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" <?= $theme->html_attributes() ?> xml:lang="en" lang="en">
@@ -10,11 +11,11 @@
<?= $page_title ?>
<? else: ?>
<? if ($theme->item()): ?>
- <?= $theme->item()->title ?>
+ <?= html::purify($theme->item()->title) ?>
<? elseif ($theme->tag()): ?>
<?= t("Photos tagged with %tag_title", array("tag_title" => $theme->tag()->name)) ?>
<? else: /* Not an item, not a tag, no page_title specified. Help! */ ?>
- <?= item::root()->title ?>
+ <?= html::purify(item::root()->title) ?>
<? endif ?>
<? endif ?>
</title>
generated by cgit v1.2.3 (git 2.51.0) at 2025-11-12 18:01:57 +0000