X-Git-Url: http://git.shiar.nl/minimedit.git/blobdiff_plain/76b939d83e563cb783d666c48b0fa9ffdac827e6..4486f69521f03fe56549394f13f7c529f57fa962:/page.php

diff --git a/page.php b/page.php
index f7c8f7d..35a810a 100644
--- a/page.php
+++ b/page.php
@@ -46,7 +46,7 @@ if ($Page->restricted) {
 
 header(sprintf('Content-Security-Policy: %s', implode('; ', [
 	"default-src 'self' 'unsafe-inline' http://cdn.ckeditor.com", # some overrides remain
-	"img-src 'self' data: http://cdn.ckeditor.com", # inline svg (in css)
+	"img-src 'self' data: blob: http://cdn.ckeditor.com", # inline svg (in css)
 	"base-uri 'self'", # only local pages
 	"frame-ancestors 'none'", # prevent malicious embedding
 ])));