Publish Advisories

advisory-database[bot] · advisory-database[bot] · commit 97b22934d2fe · 2025-05-22T21:43:56.000Z
GHSA-v9w3-34xq-hrjg GHSA-9rhq-86fm-qxqc
diff --git a/advisories/github-reviewed/2023/12/GHSA-v9w3-34xq-hrjg/GHSA-v9w3-34xq-hrjg.json b/advisories/github-reviewed/2023/12/GHSA-v9w3-34xq-hrjg/GHSA-v9w3-34xq-hrjg.json
@@ -55,7 +55,8 @@
   ],
   "database_specific": {
     "cwe_ids": [
-      "CWE-312"
+      "CWE-312",
+      "CWE-863"
     ],
     "severity": "MODERATE",
     "github_reviewed": true,
diff --git a/advisories/github-reviewed/2024/01/GHSA-9rhq-86fm-qxqc/GHSA-9rhq-86fm-qxqc.json b/advisories/github-reviewed/2024/01/GHSA-9rhq-86fm-qxqc/GHSA-9rhq-86fm-qxqc.json
@@ -1,13 +1,13 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-9rhq-86fm-qxqc",
-  "modified": "2024-01-26T19:55:58Z",
+  "modified": "2025-05-22T21:42:23Z",
   "published": "2024-01-20T00:30:27Z",
   "aliases": [
     "CVE-2024-23687"
   ],
   "summary": "Hard-coded credentials in org.folio:mod-data-export-spring",
-  "details": "Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines.\n\n",
+  "details": "Hard-coded credentials in FOLIO mod-data-export-spring versions before 1.5.4 and from 2.0.0 to 2.0.2 allows unauthenticated users to access critical APIs, modify user data, modify configurations including single-sign-on, and manipulate fees/fines.",
   "severity": [
     {
       "type": "CVSS_V3",
