diff --git a/default-logins/activemq/activemq-default-login.yaml b/default-logins/activemq/activemq-default-login.yaml
index fb1f8264f8..6107ee0961 100644
--- a/default-logins/activemq/activemq-default-login.yaml
+++ b/default-logins/activemq/activemq-default-login.yaml
@@ -18,5 +18,5 @@ requests:
- '
Broker
'
condition: and
- # We could add a request condition block to only send this request if the
+ # We could add a request condition block to only send this request if the
# site response URL had activeMQ broker stuff in the source.
diff --git a/vulnerabilities/other/acme-xss.yaml b/vulnerabilities/other/acme-xss.yaml
index 21d9d0e5d9..cf0a4bb769 100755
--- a/vulnerabilities/other/acme-xss.yaml
+++ b/vulnerabilities/other/acme-xss.yaml
@@ -9,12 +9,13 @@ requests:
- method: GET
path:
- '{{BaseURL}}/.well-known/acme-challenge/%3C%3fxml%20version=%221.0%22%3f%3E%3Cx:script%20xmlns:x=%22http://www.w3.org/1999/xhtml%22%3Ealert%28document.domain%26%23x29%3B%3C/x:script%3E'
+
+ matchers-condition: and
matchers:
- type: word
words:
- "alert(document.domain)"
- type: word
- words:
+ words:
- "/xml"
- "/html"
- matchers-condition: and
\ No newline at end of file