fixing minor typos in source code

Controllers/HomeController.cs

@@ -228,7 +228,7 @@ public IActionResult LFI()
     [HttpGet]
     public IActionResult Download(string file)
     {
-        // Vulnerable file concatination 
+        // Vulnerable file concatenation 
         var path = Path.Combine(Directory.GetCurrentDirectory(), "wwwroot", file);
 
         if (!System.IO.File.Exists(path))

Controllers/LLMController.cs

@@ -71,7 +71,7 @@ public async Task<IActionResult> ExcessiveAgency([FromBody] JsonElement body)
         }
         else
         {
-            finalPrompt = $"Tell the user very breifly (within one sentence) that you have access to the database and can query Users and Comments table {user}";
+            finalPrompt = $"Tell the user very briefly (within one sentence) that you have access to the database and can query Users and Comments table {user}";
 
             // Ollama returns plain string tokens
             await foreach (var t in _ollama.GenerateAsync(finalPrompt))

Views/Home/BrokenAuthentication.cshtml

@@ -43,7 +43,7 @@
             <a href="https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/03-Identity_Management_Testing/04-Testing_for_Account_Enumeration_and_Guessable_User_Account">OWASP - Account Enumeration</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/authentication/password-based#username-enumeration">Portswigger - Username Enumeration</a>
+            <a href="https://portswigger.net/web-security/authentication/password-based#username-enumeration">PortSwigger - Username Enumeration</a>
         </li>
     </ul>
 

Views/Home/CSRF.cshtml

@@ -54,7 +54,7 @@
             <a href="https://owasp.org/www-community/attacks/csrf">OWASP - CSRF</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/csrf">Portswigger - CSRF</a>
+            <a href="https://portswigger.net/web-security/csrf">PortSwigger - CSRF</a>
         </li>
         <li>
             <a href="https://learn.microsoft.com/en-us/aspnet/core/security/anti-request-forgery?view=aspnetcore-9.0">Microsoft - CSRF in Asp.NET Core</a>

Views/Home/CachePoisoning.cshtml

@@ -43,7 +43,7 @@
             <a href="https://owasp.org/www-community/attacks/Cache_Poisoning">OWASP - Cache Poisoning</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/web-cache-poisoning">Portswigger - Cache Poisoning</a>
+            <a href="https://portswigger.net/web-security/web-cache-poisoning">PortSwigger - Cache Poisoning</a>
         </li>
         <li>
             <a href="https://www.invicti.com/learn/web-cache-poisoning/">Invicti - Cache Poisoning</a>

Views/Home/CommandInjection.cshtml

@@ -42,7 +42,7 @@
     <h6 style="margin: 25px;">More Information:</h6>
     <ul>
         <li>
-            <a href="https://portswigger.net/web-security/os-command-injection">Portswigger - OS Command Injection</a>
+            <a href="https://portswigger.net/web-security/os-command-injection">PortSwigger - OS Command Injection</a>
         </li>
         <li>
             <a href="https://owasp.org/www-community/attacks/Command_Injection">OWASP - Command Injection</a>

Views/Home/DomXSS.cshtml

@@ -40,7 +40,7 @@
             <a href="https://owasp.org/www-community/attacks/DOM_Based_XSS">OWASP - DOM based XSS</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/cross-site-scripting/dom-based">Portswigger - DOM XSS</a>
+            <a href="https://portswigger.net/web-security/cross-site-scripting/dom-based">PortSwigger - DOM XSS</a>
         </li>
         <li>
             <a href="https://learn.snyk.io/lesson/dom-based-xss/?ecosystem=javascript">SNYK - DOM XSS</a>

Views/Home/FileUpload.cshtml

@@ -46,7 +46,7 @@
     <h6 style="margin: 25px;">More Information:</h6>
     <ul>
         <li>
-            <a href="https://portswigger.net/web-security/file-upload">Portswigger - File Uplodad Vulnerabilities</a>
+            <a href="https://portswigger.net/web-security/file-upload">PortSwigger - File Upload Vulnerabilities</a>
         </li>
         <li>
             <a href="https://owasp.org/www-community/vulnerabilities/Unrestricted_File_Upload">OWASP - Unrestricted File Upload</a>

Views/Home/InformationDisclosure.cshtml

@@ -32,7 +32,7 @@
     <h6 style="margin: 25px;">More Information:</h6>
     <ul>
         <li>
-            <a href="https://portswigger.net/web-security/information-disclosure">Portswigger - Information Disclosure</a>
+            <a href="https://portswigger.net/web-security/information-disclosure">PortSwigger - Information Disclosure</a>
         </li>
         <li>
             <a href="https://www.ibm.com/docs/en/snips/4.6.0?topic=categories-information-disclosure-attacks">IBM - Information Disclosure</a>

Views/Home/InsecureDeserialization.cshtml

@@ -103,7 +103,7 @@
             <a href="https://learn.microsoft.com/en-us/dotnet/fundamentals/code-analysis/quality-rules/ca2326">Microsoft - Newtonsoft.Json.TypeNameHandling</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/deserialization">Portswigger - Insecure Deserialization</a>
+            <a href="https://portswigger.net/web-security/deserialization">PortSwigger - Insecure Deserialization</a>
         </li>
         <li>
             <a href="https://owasp.org/www-community/vulnerabilities/Insecure_Deserialization">OWASP - Insecure Deserialization</a>

Views/Home/InsecureDirectObjectReference.cshtml

@@ -60,7 +60,7 @@
             <a href="https://cheatsheetseries.owasp.org/cheatsheets/Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet.html">OWASP - IDOR</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/access-control/idor">Portswigger - IDOR</a>
+            <a href="https://portswigger.net/web-security/access-control/idor">PortSwigger - IDOR</a>
         </li>
         <li>
             <a href="https://www.veracode.com/security/java/cwe-639/">Veracode - IDOR</a>

Views/Home/OpenRedirect.cshtml

@@ -125,7 +125,7 @@
             <a href="https://learn.snyk.io/lesson/open-redirect/?ecosystem=csharp">SNYK - Open Redirect</a>
         </li>
         <li>
-            <a href="https://portswigger.net/kb/issues/00500100_open-redirection-reflected">Portswigger - Open Redirection</a>
+            <a href="https://portswigger.net/kb/issues/00500100_open-redirection-reflected">PortSwigger - Open Redirection</a>
         </li>
         <li>
             <a href="https://www.invicti.com/learn/open-redirect-open-redirection/">Invicti - Open Redirect</a>

Views/Home/PrototypePollution.cshtml

@@ -45,7 +45,7 @@
             <a href="https://cheatsheetseries.owasp.org/cheatsheets/Prototype_Pollution_Prevention_Cheat_Sheet.html">OWASP - Prototype Pollution</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/prototype-pollution">Portswigger - Prototype Pollution</a>
+            <a href="https://portswigger.net/web-security/prototype-pollution">PortSwigger - Prototype Pollution</a>
         </li>
         <li>
             <a href="https://learn.snyk.io/lesson/prototype-pollution/?ecosystem=javascript">SNYK - Prototype Pollution</a>

Views/Home/ReflectedXSS.cshtml

@@ -42,7 +42,7 @@
             <a href="https://owasp.org/www-community/attacks/xss/">OWASP - XSS</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/cross-site-scripting/reflected">Portswigger - Reflected XSS</a>
+            <a href="https://portswigger.net/web-security/cross-site-scripting/reflected">PortSwigger - Reflected XSS</a>
         </li>
         <li>
             <a href="https://www.veracode.com/security/reflected-xss/">Veracode - Reflected XSS</a>

Views/Home/SSRF.cshtml

@@ -52,7 +52,7 @@
             <a href="https://owasp.org/www-community/attacks/Server_Side_Request_Forgery">OWASP - SSRF</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/ssrf">Portswigger - SSRF</a>
+            <a href="https://portswigger.net/web-security/ssrf">PortSwigger - SSRF</a>
         </li>
         <li>
             <a href="https://www.acunetix.com/blog/articles/server-side-request-forgery-vulnerability/">Acunetix - SSRF</a>

Views/Home/SSTI.cshtml

@@ -46,7 +46,7 @@
             <a href="https://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Testing/07-Input_Validation_Testing/18-Testing_for_Server_Side_Template_Injection">OWASP - SSTI</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/server-side-template-injection">Portswigger - SSTI</a>
+            <a href="https://portswigger.net/web-security/server-side-template-injection">PortSwigger - SSTI</a>
         </li>
         <li>
             <a href="https://github.com/toddams/RazorLight">RazorLight Template Engine</a>

Views/Home/SqlInjection.cshtml

@@ -39,7 +39,7 @@
             <a href="https://owasp.org/www-community/attacks/SQL_Injection">OWASP - Sql Injection</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/sql-injection">Portswigger - Sql Injection</a>
+            <a href="https://portswigger.net/web-security/sql-injection">PortSwigger - Sql Injection</a>
         </li>
         <li>
             <a href="https://www.acunetix.com/websitesecurity/sql-injection/">Acunetix - Sql Injection</a>
@@ -73,7 +73,7 @@
 
         <div class="popup-line"><input type="checkbox" class="code-checkbox" onchange="checkVulnerability(this, 6)">
         <span>using var cmd = new SqliteCommand(query, conn);</span>
-        </div7
+        </div>
 
         <div class="popup-line"><input type="checkbox" class="code-checkbox" onchange="checkVulnerability(this, 7)">
         <span>using var reader = cmd.ExecuteReader();</span>

Views/Home/StoredXSS.cshtml

@@ -50,7 +50,7 @@
             <a href="https://owasp.org/www-community/attacks/xss/">OWASP - XSS</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/cross-site-scripting/stored">Portswigger - Stored XSS</a>
+            <a href="https://portswigger.net/web-security/cross-site-scripting/stored">PortSwigger - Stored XSS</a>
         </li>
         <li>
             <a href="https://docs.veracode.com/r/stored-xss">Veracode - Stored XSS</a>

Views/Home/XXE.cshtml

@@ -101,7 +101,7 @@
             <a href="https://owasp.org/www-community/vulnerabilities/XML_External_Entity_(XXE)_Processing">OWASP - XXE Injection</a>
         </li>
         <li>
-            <a href="https://portswigger.net/web-security/xxe">Portswigger - XXE Injection</a>
+            <a href="https://portswigger.net/web-security/xxe">PortSwigger - XXE Injection</a>
         </li>
         <li>
             <a href="https://www.invicti.com/learn/xml-external-entity-xxe/">Invicti - XXE Injection</a>