Findings · Security

X-Content-Type-Options

Prevents browsers from MIME-sniffing responses, which can lead to XSS via uploaded files

50.6%
of 1,042 scanned sites fail this check
Fail
50.6%
527 scans
Warning
0%
0 scans
Pass
49.4%
515 scans

Why it matters

This check belongs to Securityis it safe? It's rated medium severity. Prevents browsers from MIME-sniffing responses, which can lead to XSS via uploaded files

The fix

Vettd's Fix Pack includes a copy-paste-ready solution for this check — auto-generated for your specific site, in the right format for your stack. See pricing, or scan first to see what your site needs.

Check your own site for this.

Vettd runs this check (and 81 others) on any URL. Free, no signup, ~30 seconds.

Scan your site →

All findings