Content-Security-Policy: script-src-attr 'none'; script-src-elem 'unsafe-inline';. will allow inline scripts like <script> alert('I am ...
確定! 回上一頁