diff --git a/http/cves/2024/CVE-2024-35584.yaml b/http/cves/2024/CVE-2024-35584.yaml
index b8ed70d5d3..ca968d46e7 100644
--- a/http/cves/2024/CVE-2024-35584.yaml
+++ b/http/cves/2024/CVE-2024-35584.yaml
@@ -1,7 +1,7 @@
 id: CVE-2024-35584
 
 info:
-  name: OpenSIS < 9.1 - SQL Injection
+  name: openSIS < 9.1 - SQL Injection
   author: s4e-io
   severity: high
   description: |
@@ -45,7 +45,7 @@ http:
     matchers:
       - type: dsl
         dsl:
-          - 'duration_2>=7'
-          - 'contains(body_1, "openSIS") && contains(body_2, "donetext: 'Done'")'
-          - 'status_code_1 == 200 && status_code_2 == 200'
+          - duration_2>=7
+          - contains(body_1, "openSIS") && contains_all(body_2, "donetext:", "\'Done\'")
+          - status_code_1 == 200 && status_code_2 == 200
         condition: and