diff --git a/vulnerabilities/dedecms/dedecms-membergroup-sqli.yaml b/vulnerabilities/dedecms/dedecms-membergroup-sqli.yaml
index 0b4794d6ed..8d1d63d199 100644
--- a/vulnerabilities/dedecms/dedecms-membergroup-sqli.yaml
+++ b/vulnerabilities/dedecms/dedecms-membergroup-sqli.yaml
@@ -7,6 +7,8 @@ info:
   description: A vulnerability in the DedeCMS product allows remote unauthenticated users to inject arbitrary SQL statements via the 'ajax_membergroup.php' endpoint and the 'membergroup' parameter.
   reference:
     - http://www.dedeyuan.com/xueyuan/wenti/1244.html
+  metadata:
+    shodan-query: http.html:"DedeCms"
   tags: sqli,dedecms
 
 variables: