arxius: XSS in content type header when uploading file.

Hello. First of all I wish you good luck securing your site, as far as I can tell, your site is secured, and this bug is minor. It affects the content type header, when a file with an invalid content-type is uploaded, the value of the content-type file header is echoed back without any filtering...