From 03ee8abb72e1dccf22d2660137318954dde246c2 Mon Sep 17 00:00:00 2001
From: Matteo Meucci <matteo.meucci@owasp.org>
Date: Sun, 23 Nov 2025 12:16:27 +0100
Subject: [PATCH] Update AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md

---
 .../tests/AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Document/content/tests/AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md b/Document/content/tests/AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md
index 73127fe..e91804f 100644
--- a/Document/content/tests/AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md
+++ b/Document/content/tests/AITG-APP-02_Testing_for_Indirect_Prompt_Injection.md
@@ -22,7 +22,7 @@ The following is a diagram that represents this kind of test:
   <img src="/Document/images/IndirectPromptInjection.png" alt="Description" width="600"/>
 </p>
 
-*Fig. 5 A schema of indirect prompt injection technique*
+*Fig. 5: A schema of indirect prompt injection technique*
 
 For this kind of test you need to craft a web page with the malicious payload that will be executed in the user prompt and observe if the AI system will execute your payload.