diff --git a/src/test/java/org/sasanlabs/service/vulnerability/xss/reflected/XSSInImgTagAttributeTest.java b/src/test/java/org/sasanlabs/service/vulnerability/xss/reflected/XSSInImgTagAttributeTest.java
index 14d6ec56..181c27d0 100644
--- a/src/test/java/org/sasanlabs/service/vulnerability/xss/reflected/XSSInImgTagAttributeTest.java
+++ b/src/test/java/org/sasanlabs/service/vulnerability/xss/reflected/XSSInImgTagAttributeTest.java
@@ -24,6 +24,7 @@ public void getVulnerablePayloadLevelSecure_validPaths(String input, String expe
 
         String expectedString = "<img src=\"" + expected + "\" width=\"400\" height=\"300\"/>";
 
+        // expected, actual
         assertEquals(expectedString, actual.getBody());
     }
 
@@ -34,6 +35,7 @@ public void getVulnerablePayloadLevelSecure_exploitsFromLowerLevels(String input
 
         ResponseEntity<String> actual = subject.getVulnerablePayloadLevelSecure(input);
 
-        assertSame(actual.getStatusCode(), HttpStatus.BAD_REQUEST);
+        // Swap arguments: expected, actual
+        assertSame(HttpStatus.BAD_REQUEST, actual.getStatusCode());
     }
 }