diff --git a/cves/2020/CVE-2020-36287.yaml b/cves/2020/CVE-2020-36287.yaml
index e5dee59485..93941e1612 100644
--- a/cves/2020/CVE-2020-36287.yaml
+++ b/cves/2020/CVE-2020-36287.yaml
@@ -10,6 +10,8 @@ info:
       - https://twitter.com/Jafar_Abo_Nada/status/1386058611084890116
       - https://nvd.nist.gov/vuln/detail/CVE-2020-36287
 
+  # On a vulnerable instance, iterate through gadget ID from 10000 to 19999 to get exposed information /rest/dashboards/1.0/10000/gadget/{{id}}/prefs
+
 requests:
   - raw:
       - |