Update README.md

Author: jruehlow

README.md

@@ -3,6 +3,8 @@ TimeType
 
 **TimeType** is a typing test featuring a replay functionality. Allowing users to test their typing speed and accuracy, and to replay their typing sessions.
 
+For more detailed documentation see: [docs](https://github.com/enowars/enowars9-service-timetype/blob/main/documentation/README.md)
+
 ---
 
 ## Features
@@ -30,14 +32,14 @@ TimeType
 - **Functionality:** Allows users to upload custom texts.
 - **Vulnerability:**  
   - **Path Traversal:**  
-    Due to missing sanitization of slashes, a logic flaw, and *weird* behavior of [`</>`](https://hackage.haskell.org/package/filepath-1.5.4.0/docs/System-FilePath.html#v:-60--47--62-), attackers can upload files with names like `/data/uploads/<username>/<filename>` to access other peoples texts.
+    Due to missing sanitization of slashes, a logic flaw, and *weird* behavior of [`</>`](https://hackage.haskell.org/package/filepath-1.5.4.0/docs/System-FilePath.html#v:-60--47--62-), attackers can upload files with names like `//data/uploads/<username>/<filename>` to access other peoples texts.
 
 ### Flagstore 3: Private Lobby Chat
 
 - **Functionality:** Users can create private password protected Lobbys.
 - **Vulnerability:**  
   - **Missing auth check:**  
-    The Http endpoint checks if the user has the needed auth session cookies for joining the lobby, the ws endpoint is missing these checks.
+    The HTTP endpoint checks if the user has the needed auth session cookies for joining the lobby, the WS endpoint is missing these checks.
 ---
 
 ## License