From 5ad2fa9dddccbb8602bfb2c7ccba2c1c8211bc04 Mon Sep 17 00:00:00 2001
From: Aissaoui Anouar <anouar.aissaoui@backmarket.com>
Date: Thu, 28 Nov 2019 02:37:12 +0100
Subject: [PATCH 1/2] chore(messages): Corrected typos

---
 db/details.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/db/details.json b/db/details.json
index d4e4a31..cf512be 100644
--- a/db/details.json
+++ b/db/details.json
@@ -7,7 +7,7 @@
 	"third party allowed" : {
 		"Description" : "This host has whitelisted a third party host for cross origin requests.",
 		"Severity" : "Medium",
-		"Exploitation" : "If the whitelisted host is a code hosting platform such as codepen.io or has an XSS vulnerbaility, it can be used to exploit this misconfiguration."
+		"Exploitation" : "If the whitelisted host is a code hosting platform such as codepen.io or has an XSS vulnerability, it can be used to exploit this misconfiguration."
 
 	},
 	"origin reflected" : {
@@ -21,7 +21,7 @@
 		"Exploitation" : "Not possible"
 	},
 	"post-domain wildcard" : {
-		"Description" : "The origin verification is flawed, it allows requests from a host that has this host as a preffix.",
+		"Description" : "The origin verification is flawed, it allows requests from a host that has this host as a prefix.",
 		"Severity" : "High",
 		"Exploitation" : "Make requests from target.com.attacker.com"
 	},
@@ -33,7 +33,7 @@
 	"null origin allowed" : {
 		"Description" : "This host allows requests from 'null' origin.",
 		"Severity" : "High",
-		"Exploitation" : "Make requests from a sanboxed iframe."
+		"Exploitation" : "Make requests from a sandboxed iframe."
 	},
 	"http origin allowed" : {
 		"Description" : "This host allows sharing resources over an unencrypted (HTTP) connection.",
@@ -48,6 +48,6 @@
 	"unescaped regex" : {
 		"Description" : "The regex used for origin verification contains an unescaped dot (.) character.",
 		"Severity" : "High",
-		"Exploitation" : "If the target is sub.example.com, make requests from subxexample.com"
+		"Exploitation" : "If the target is sub.example.com, make requests from subexample.com"
 	}
 }

From 56a8c48c6be8da7fd80e431c05a0a2a2c3461719 Mon Sep 17 00:00:00 2001
From: Somdev Sangwan <s0md3v@gmail.com>
Date: Thu, 28 Nov 2019 11:10:41 +0530
Subject: [PATCH 2/2] Update details.json

---
 db/details.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/db/details.json b/db/details.json
index cf512be..a5e6dbb 100644
--- a/db/details.json
+++ b/db/details.json
@@ -48,6 +48,6 @@
 	"unescaped regex" : {
 		"Description" : "The regex used for origin verification contains an unescaped dot (.) character.",
 		"Severity" : "High",
-		"Exploitation" : "If the target is sub.example.com, make requests from subexample.com"
+		"Exploitation" : "If the target is sub.example.com, make requests from subxexample.com"
 	}
 }