Translations:Manual:MIME type detection/63/en

Note that the detection of HTML and JavaScript is rather broad, and may report false positives &mdash; this is so because the Microsoft Internet Explorer is known to interpret files that look like HTML, regardless of file extension or MIME type reported by the web server, which would lead to the site being vulnerable to cross-site scripting attacks.