Apply suggestions from code review

atorralba · mchammer01 · web-flow · commit eef4fc3a0a13 · 2022-11-08T15:44:26.000+01:00
Co-authored-by: mc &lt;42146119+mchammer01@users.noreply.github.com&gt;
diff --git a/swift/ql/src/queries/Security/CWE-611/XXE.qhelp b/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
@@ -4,7 +4,7 @@
 <overview>
 <p>
 Parsing untrusted XML files with a weakly configured XML parser may lead to an XML External Entity (XXE) attack. This type of attack
-uses external entity references to access arbitrary files on a system, carry out denial of service, or server side
+uses external entity references to access arbitrary files on a system, carry out denial-of-service attacks, or server-side
 request forgery. Even when the result of parsing is not returned to the user, out-of-band
 data retrieval techniques may allow attackers to steal sensitive data. Denial of services can also be
 carried out in this situation.
@@ -46,8 +46,8 @@ OWASP:
 <a href="https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html">XML External Entity Prevention Cheat Sheet</a>.
 </li>
 <li>
-Timothy Morgen:
-<a href="https://research.nccgroup.com/2014/05/19/xml-schema-dtd-and-entity-attacks-a-compendium-of-known-techniques/">XML Schema, DTD, and Entity Attacks</a>.
+Timothy D. Morgan and Omar Al Ibrahim
+<a href="https://research.nccgroup.com/2014/05/19/xml-schema-dtd-and-entity-attacks-a-compendium-of-known-techniques/">XML Schema, DTD, and Entity Attacks: A Compendium of Known Techniques</a>.
 </li>
 <li>
 Timur Yunusov, Alexey Osipov:
