diff --git a/htdocs/document.php b/htdocs/document.php
index 21ab1b8b054..089bdf4b66b 100644
--- a/htdocs/document.php
+++ b/htdocs/document.php
@@ -31,6 +31,8 @@
  * 				DOL_URL_ROOT.'/document.php?hashp=sharekey'
  */
 
+define('MAIN_SECURITY_FORCECSP', "default-src: 'none'");
+
 //if (! defined('NOREQUIREUSER'))	define('NOREQUIREUSER','1');	// Not disabled cause need to load personalized language
 //if (! defined('NOREQUIREDB'))		define('NOREQUIREDB','1');		// Not disabled cause need to load personalized language
 if (!defined('NOTOKENRENEWAL')) {
diff --git a/htdocs/viewimage.php b/htdocs/viewimage.php
index 2c2c93acbca..51df71c85ef 100644
--- a/htdocs/viewimage.php
+++ b/htdocs/viewimage.php
@@ -26,6 +26,8 @@
  *					DOL_URL_ROOT.'/viewimage.php?hashp=sharekey
  */
 
+define('MAIN_SECURITY_FORCECSP', "default-src: 'none'");
+
 //if (! defined('NOREQUIREUSER'))	define('NOREQUIREUSER','1');	// Not disabled cause need to load personalized language
 //if (! defined('NOREQUIREDB'))		define('NOREQUIREDB','1');		// Not disabled cause need to load personalized language
 if (!defined('NOREQUIRESOC')) {