X-Content-Type-Options header missing
Unknown
Vulnerability Details
URL : http://www.localize.io/
Description : The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'
Solution : This check is specific to Internet Explorer 8 and Google Chrome. Ensure each page sets a Content-Type header and the X-CONTENT-TYPE-OPTIONS if the Content-Type header is unknown
content sniffing is possible
Actions
View on HackerOneReport Stats
- Report ID: 8059
- State: Closed
- Substate: resolved
- Upvotes: 1