diff --git a/volumes/conf.d/zinomedia.de.conf b/volumes/conf.d/zinomedia.de.conf
index 4daa090..85a1335 100644
--- a/volumes/conf.d/zinomedia.de.conf
+++ b/volumes/conf.d/zinomedia.de.conf
@@ -20,7 +20,7 @@ server {
     include "snippets/wordpress-optimizations.conf";
     #include "snippets/enable-php-fpm.conf";
 
-    add_header Content-Security-Policy "default-src *; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob:; img-src 'self' data: *; style-src 'self' 'unsafe-inline'; font-src 'self' data: *; upgrade-insecure-requests;" always;
+    add_header Content-Security-Policy "default-src 'unsafe-inline' 'unsafe-eval' data: blob: *; script-src 'unsafe-inline' 'unsafe-eval' data: blob: *; img-src 'unsafe-inline' data: blob: *; style-src 'unsafe-inline' data: blob: *; font-src 'unsafe-inline' data: blob: *;" always;
     #add_header Content-Security-Policy "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:;" always;
 
     client_max_body_size 0;