From ed774788cf1259869b1e2f7bc29b3d76032e5d98 Mon Sep 17 00:00:00 2001
From: ShadowByte <155693555+ShadowByte1@users.noreply.github.com>
Date: Tue, 6 Aug 2024 10:47:43 +1000
Subject: [PATCH] Update README.md

---
 README.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/README.md b/README.md
index 6e5b434..d0e3ec5 100644
--- a/README.md
+++ b/README.md
@@ -17,8 +17,14 @@ Check if any value you control (parameters, path, headers, cookies) is reflected
 # Determine Reflection Context
 
 Raw HTML: Can you create new HTML tags or use attributes/events that support JavaScript?
+
+
 Inside HTML Tag: Can you exit to raw HTML or create events/attributes to execute JavaScript?
+
+
 Inside JavaScript Code: Can you escape the <script> tag or string context to execute arbitrary JavaScript?
+
+
 4. Contexts for XSS Injection
 Raw HTML Context
 When your input is reflected in the raw HTML of a page, you can exploit it by injecting HTML tags that execute JavaScript. Common tags include: