diff --git a/vulnerabilities/generic/cache-poisoning.yaml b/vulnerabilities/generic/cache-poisoning.yaml
new file mode 100644
index 0000000000..82886086dc
--- /dev/null
+++ b/vulnerabilities/generic/cache-poisoning.yaml
@@ -0,0 +1,27 @@
+id: cache-poisoning
+
+info:
+  name: Cache Poisoning
+  author: melbadry9 & xelkomy
+  severity: info
+  reference: |
+      - https://blog.melbadry9.xyz/fuzzing/nuclei-cache-poisoning
+      - https://portswigger.net/research/practical-web-cache-poisoning
+  tags: cache
+
+requests:
+  - raw:
+      - |
+        GET /?mel=9 HTTP/1.1
+        X-Forwarded-Prefix: cache.example.com
+        X-Forwarded-Host: cache.example.com
+        X-Forwarded-For: cache.example.com
+
+      - |
+        GET /?mel=9 HTTP/1.1
+
+    req-condition: true
+    matchers:
+      - type: dsl
+        dsl:
+          - 'contains(body_2, "cache.example.com")'