diff --git a/application/Espo/Core/Controllers/RecordBase.php b/application/Espo/Core/Controllers/RecordBase.php
index f01640a8cf..2d9f6a7c5f 100644
--- a/application/Espo/Core/Controllers/RecordBase.php
+++ b/application/Espo/Core/Controllers/RecordBase.php
@@ -173,6 +173,10 @@ class RecordBase extends Base implements
      */
     public function postActionCreate(Request $request, Response $response): stdClass
     {
+        if ($request->getHeader('Content-Type') !== 'application/json') {
+            throw new BadRequest("Not supported content type.");
+        }
+
         if (method_exists($this, 'actionCreate')) {
             // For backward compatibility.
             return (object) $this->actionCreate($request->getRouteParams(), $request->getParsedBody(), $request);