Removed space from before c in _GET variable

[laurencejbelliott]

The space in front of the character 'c' in _GET's value ' c' caused the name 'c' given to the cookie variable in the example XSS injection to not be parsed by the script and as such cause the script to fail. For this reason I propose that this space be removed from _GET's value.