Transfers, NFTTransfers public read write

If transfers and NFT transfers section into the database can be readable and writable for public is this can cause any security weakness?

you can remove those public write and read, and set CLP for role:coreservices

that coreservices role should be added by default for new servers, there was a time when it was not added automatically