diff --git a/cves/2022/CVE-2022-31299.yaml b/cves/2022/CVE-2022-31299.yaml
index 1b7cefe875..ec9dc290f9 100644
--- a/cves/2022/CVE-2022-31299.yaml
+++ b/cves/2022/CVE-2022-31299.yaml
@@ -7,8 +7,8 @@ info:
   description: |
     Haraj v3.7 was discovered to contain a reflected cross-site scripting (XSS) vulnerability in the User Upgrade Form.
   reference:
-    - https://nvd.nist.gov/vuln/detail/CVE-2022-31299
     - https://github.com/bigzooooz/CVE-2022-31299
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-31299
   classification:
     cve-id: CVE-2022-31299
   metadata: