diff --git a/files/en-us/web/security/attacks/xss/index.md b/files/en-us/web/security/attacks/xss/index.md
index 845727fed1360ee..dc1c3766c692b84 100644
--- a/files/en-us/web/security/attacks/xss/index.md
+++ b/files/en-us/web/security/attacks/xss/index.md
@@ -46,8 +46,7 @@ Let's say this page is served from `https://my-bank.com/welcome`. To exploit the
 
 ```html
 <a href="https://my-bank.com/welcome?user=<img src=x onerror=alert('hello!')>">
-  Win a free iPad!</a
->
+  Win a free iPad!</a>
 ```
 
 When the user clicks the link:
@@ -110,8 +109,7 @@ To exploit this vulnerability, an attacker sends the user a link like this:
 
 ```html
 <a href="http://example.org/results?search=<img src=x onerror=alert('hello')">
-  Win a free iPad!</a
->
+  Win a free iPad!</a>
 ```
 
 When the user clicks the link: