Updated CWE id to CWE-306.

bananabr · bananabr · commit 15553dc77e53 · 2025-11-11T20:44:12.000Z
diff --git a/active/open_mcp.js b/active/open_mcp.js
@@ -23,7 +23,7 @@ references:
 category: server
 risk: medium
 confidence: medium
-cweId: 200  # CWE-200: Information Exposure
+cweId: 306  # CWE-306: Missing Authentication for Critical Function
 wascId: 13  # WASC-13: Information Leakage
 alertTags:
   ${CommonAlertTag.OWASP_2021_A05_SEC_MISCONFIG.getTag()}: ${CommonAlertTag.OWASP_2021_A05_SEC_MISCONFIG.getValue()}
