X-Frame-Options Header is Missing
X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a
<object>. Sites can use this to avoid click-jacking attacks, by ensuring that their content is not embedded into other sites. Mozilla
Configure your server to send this header for all pages. You can see references for possible values.