From fad4027fde09d9393eff7e5833a9acb4238e6494 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Mon, 5 Jan 2026 15:57:17 +0000
Subject: [PATCH] Fix OWASP reference in SSJI documentation

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
---
 SSJI/README.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/SSJI/README.md b/SSJI/README.md
index a0fadc2..1738898 100644
--- a/SSJI/README.md
+++ b/SSJI/README.md
@@ -533,10 +533,11 @@ Object.freeze(global);
 
 ## References
 
-- [OWASP - Server-Side JavaScript Injection](https://owasp.org/www-community/attacks/Server-Side_Includes_(SSI)_Injection)
+- [OWASP - Code Injection](https://owasp.org/www-community/attacks/Code_Injection)
 - [Node.js Security Best Practices](https://nodejs.org/en/docs/guides/security/)
 - [MongoDB Security Checklist](https://docs.mongodb.com/manual/administration/security-checklist/)
 - [Avoiding eval and new Function](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/eval#never_use_eval!)
+- [CWE-94: Improper Control of Generation of Code](https://cwe.mitre.org/data/definitions/94.html)
 
 ## Payloads