From ebcc5f494b7ccefce3c0a06d305aa13da976c02c Mon Sep 17 00:00:00 2001
From: GitHub Action <action@github.com>
Date: Mon, 21 Nov 2022 05:13:32 +0000
Subject: [PATCH] Auto Generated CVE annotations [Mon Nov 21 05:13:32 UTC 2022]
 :robot:

---
 cves/2022/CVE-2022-40881.yaml | 5 ++++-
 cves/2022/CVE-2022-41840.yaml | 1 +
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/cves/2022/CVE-2022-40881.yaml b/cves/2022/CVE-2022-40881.yaml
index ed0b04a00b..71ca0ccec7 100644
--- a/cves/2022/CVE-2022-40881.yaml
+++ b/cves/2022/CVE-2022-40881.yaml
@@ -11,10 +11,13 @@ info:
     - https://github.com/advisories/GHSA-wx3r-88rg-whxq
     - https://nvd.nist.gov/vuln/detail/CVE-2022-40881
   classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
+    cvss-score: 9.8
     cve-id: CVE-2022-40881
+    cwe-id: CWE-77
   metadata:
-    verified: true
     shodan-query: http.favicon.hash:"-244067125"
+    verified: "true"
   tags: cve,cve2022,solarview,rce,lfi
 
 variables:
diff --git a/cves/2022/CVE-2022-41840.yaml b/cves/2022/CVE-2022-41840.yaml
index 61622e6816..b636400b80 100644
--- a/cves/2022/CVE-2022-41840.yaml
+++ b/cves/2022/CVE-2022-41840.yaml
@@ -10,6 +10,7 @@ info:
     - https://patchstack.com/database/vulnerability/usc-e-shop/wordpress-welcart-e-commerce-plugin-2-7-7-unauth-directory-traversal-vulnerability
     - https://wordpress.org/plugins/usc-e-shop/
     - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41840
+    - https://patchstack.com/database/vulnerability/usc-e-shop/wordpress-welcart-e-commerce-plugin-2-7-7-unauth-directory-traversal-vulnerability?_s_id=cve
   classification:
     cve-id: CVE-2022-41840
   metadata: