Missing X-frame options #269
Description
The X-Frame-Option header is missing. It means the users could be victims of click-jacking attacks so it's a security risk.
I recommend adding the header and limiting the scope as much as possible for example by using one of these two options:
X-Frame-Options: DENYX-Frame-Options: SAMEORIGIN
I noticed it's also the case for another wca sub-site: https://statistics.worldcubeassociation.org/ and if there are more than these two I would advise checking them as well.