diff --git a/module/src/main/java/com/trackray/module/inner/SimpleVulRule.java b/module/src/main/java/com/trackray/module/inner/SimpleVulRule.java
index 3836c62..9149e4e 100644
--- a/module/src/main/java/com/trackray/module/inner/SimpleVulRule.java
+++ b/module/src/main/java/com/trackray/module/inner/SimpleVulRule.java
@@ -161,6 +161,16 @@ public boolean fun(HttpResponse response) throws Exception {
                         ).build()
         );
 
+        loaders.add(Payloader.builder()
+                .url("/mailsms/s?func=ADMIN:appState&dumpConfig=/")
+                .containsStr("/home/coremail")
+                .vuln(Vulnerable.builder()
+                        .title("Coremail 信息泄露漏洞")
+                        .level(Vulnerable.Level.HIGH.getLevel())
+                        .type(Vulnerable.Type.INFO_LEAKAGE.getType())
+                        .build())
+                .build());
+
         loaders.add(
                 Payloader.builder().url("/WebResource.axd?d=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1")
                         .containsStr("Microsoft .NET Framework")