Update cross-site-scripting.md (dotnet#19861)

vhakti · Sep 15, 2020 · 0328087 · 0328087
1 parent 28cceb1
commit 0328087
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/aspnetcore/security/cross-site-scripting.md b/aspnetcore/security/cross-site-scripting.md
@@ -117,8 +117,8 @@ The preceding markup generates the following HTML:
         injectedData.dataset.untrustedinput;
 
     // Put the injected, untrusted data into the scriptedWrite div tag.
-// Do NOT use document.write() on dynamically generated data as it can
-// lead to XSS.
+    // Do NOT use document.write() on dynamically generated data as it can
+    // lead to XSS.
 
     document.getElementById("scriptedWrite").innerText += clientSideUntrustedInputOldStyle;