Correccions de seguridade.

.htaccess

@@ -93,7 +93,7 @@ ErrorDocument 404 /index.php
 <IfModule mod_headers.c>
   # prevent site from being loaded in an iframe on another site
   # you will need to remove this one if you want to allow external iframes
-  Header always append X-Frame-Options SAMEORIGIN 
+  # Header always append X-Frame-Options SAMEORIGIN 
 
   # To prevent cross site scripting (IE8+ proprietary)
   Header set X-XSS-Protection "1; mode=block"

site/config.php

@@ -158,3 +158,15 @@ $config->prependTemplateFile = '_init.php';
  *
  */
 $config->appendTemplateFile = '_main.php';
+
+/**
+ * X-Powered-By header behavior
+ *
+ * - true: Sends the generic PW header, replacing any other powered-by headers (recommended). 
+ * - false: Sends blank powered-by, replacing any other powered-by headers.
+ * - null: Sends no powered-by, existing server powered-by headers will pass through.
+ * 
+ * @var bool|null
+ * 
+ */
+$config->usePoweredBy = null;

site/templates/_head.php

@@ -10,6 +10,21 @@
         <meta name="msapplication-TileColor" content="#00aba9">
         <meta name="msapplication-config" content="<?php echo $config->urls->templates; ?>images/browserconfig.xml">
         <meta name="theme-color" content="#ffffff">
+
+        <!-- Facebook Social Tags
+        <meta property="og:title" content="<?php echo $titulo; ?>">
+        <meta property="og:description" content="<?php echo $configuracion['nome_sitio'] . ' ' . $configuracion['descripcion_sitio']; ?>">
+        <meta property="og:image" content="https://your-website.com/og-image.png">
+        <meta property="og:url" content="<?php echo $page->httpUrl(); ?>">
+        -->
+
+        <!-- Twitter Socual Tags
+        <meta name="twitter:title" content="<?php echo $titulo; ?>">
+        <meta name="twitter:description" content="<?php echo $configuracion['nome_sitio'] . ' ' . $configuracion['descripcion_sitio']; ?>">
+        <meta name="twitter:url" content="https://your-website.com/twitter-image.png">
+        <meta name="twitter:card" content="summary">
+        -->
+
         <link rel="apple-touch-icon" sizes="180x180" href="<?php echo $config->urls->templates; ?>images/apple-touch-icon.png">
         <link rel="icon" type="image/png" sizes="32x32" href="<?php echo $config->urls->templates; ?>images/favicon-32x32.png">
         <link rel="icon" type="image/png" sizes="16x16" href="<?php echo $config->urls->templates; ?>images/favicon-16x16.png">
@@ -18,12 +33,21 @@
         <link rel="shortcut icon" href="<?php echo $config->urls->templates; ?>images/favicon.ico">
         <link rel="stylesheet" type="text/css" href="<?php echo $config->urls->templates; ?>css/reset.css" />
         <link rel="stylesheet" type="text/css" href="<?php echo $config->urls->templates; ?>css/fonts.css" />
-        <link rel="stylesheet" type="text/css" href="<?php echo $config->urls->templates; ?>css/colors.css" />
         <link title="Praia de Seselle" rel="stylesheet" type="text/css" href="<?php echo $config->urls->templates?>css/style.css" />
 <?php foreach($languages as $idioma): ?>
 <?php if(!$page->viewable($idioma)): continue; endif; ?>
         <link rel="alternate" hreflang="<?php echo $inicio->getLanguageValue($idioma, 'name'); ?>" href="<?php echo $page->httpUrl($idioma); ?>" />
 <?php endforeach; ?>
+        <style>
+            :root
+                {
+                    font-size: 16px;
+
+                    --color_60: <?php echo $configuracion['color_fondo'] ?>;
+                    --color_30: <?php echo $configuracion['color_principal'] ?>;
+                    --color_10: <?php echo $configuracion['color_secundario'] ?>;
+                }
+        </style>
     </head>
     <body>
         <a href="#contido" class="visually-hidden element-focusable bypass-to-main"><?php echo _x('Skip to content', 'bypass'); ?></a>

site/templates/css/style.css

@@ -95,7 +95,6 @@ header#cabeceira
 div#logo
 {
     width: 230px !important;
-    height: 169px;
 }
 
 header#cabeceira input#interruptor