As per Refused to execute a JavaScript script. Source code of script found within request, I would like to send this code with pages of my WordPress site:
<?php header("X-XSS-Protection: 0");?>
Where do I put it?
How can I add an HTTP header in my WordPress implementation
You can it to the top of the index.php in the wordpress docroot. You need to modify the header before ANY content is sent.
If you update your site with a new worpress version you could lose this change. Just be aware.