GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → olbat → nvdcve

olbat / nvdcve

Licence: other
NVD/CVE as JSON files

Labels

cvevulnerability-identification

Projects that are alternatives of or similar to nvdcve

vulnerablecode
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
Stars: ✭ 269 (+240.51%)
Mutual labels:  cve, vulnerability-identification
PatrowlHearsData
Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds
Stars: ✭ 66 (-16.46%)
Mutual labels:  cve, vulnerability-identification
security-advisories
👮 Security advisories of Nextcloud
Stars: ✭ 35 (-55.7%)
Mutual labels:  cve
web-cve-tests
A simple framework for sending test payloads for known web CVEs.
Stars: ✭ 120 (+51.9%)
Mutual labels:  cve
massh-enum
OpenSSH 2.3 up to 7.4 Mass Username Enumeration (CVE-2018-15473).
Stars: ✭ 136 (+72.15%)
Mutual labels:  cve
pwn-pulse
Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (+59.49%)
Mutual labels:  cve
CVE-2021-41773 CVE-2021-42013
Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE
Stars: ✭ 20 (-74.68%)
Mutual labels:  cve
rest-api
REST API backend for Reconmap
Stars: ✭ 48 (-39.24%)
Mutual labels:  cve
CVE-2019-10149
CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
Stars: ✭ 15 (-81.01%)
Mutual labels:  cve
exploits
Some personal exploits/pocs
Stars: ✭ 52 (-34.18%)
Mutual labels:  cve
fabric8-analytics-vscode-extension
Red Hat Dependency Analytics extension
Stars: ✭ 125 (+58.23%)
Mutual labels:  cve
myBugAnalyze
一些漏洞分析
Stars: ✭ 48 (-39.24%)
Mutual labels:  cve
CVE-2019-8449
CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4
Stars: ✭ 66 (-16.46%)
Mutual labels:  cve
Virtual-Host
Modified Nuclei Templates Version to FUZZ Host Header
Stars: ✭ 38 (-51.9%)
Mutual labels:  cve
patton-cli
The knife of the Admin & Security auditor
Stars: ✭ 42 (-46.84%)
Mutual labels:  cve
vulnerability-lab
漏洞研究
Stars: ✭ 379 (+379.75%)
Mutual labels:  cve
advisories
A collection of my public security advisories.
Stars: ✭ 16 (-79.75%)
Mutual labels:  cve
vulnerability-db
Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.
Stars: ✭ 36 (-54.43%)
Mutual labels:  cve
Exploits
A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
Stars: ✭ 75 (-5.06%)
Mutual labels:  cve
vulristics
Extensible framework for analyzing publicly available information about vulnerabilities
Stars: ✭ 46 (-41.77%)
Mutual labels:  cve
View All Similar Projects ➔

NVD/CVE® as JSON files

Important: this repository is now partially redundant with the CVEProject/cvelist project that allows to explore the CVE®/NVD modification history using git as well as submitting new vulnerabilities using GitHub pull requests. However, this repository is still synchronized with the dictionaries to allow to fetch each vulnerability in JSON format.

About

This repository contains JSON files describing vulnerabilities from the NVD and CVE® dictionaries.

It has two main goals:

  • allow to easilly get the description of a vulnerability in the JSON format (schema)
  • allow to explore CVE®/NVD modification history using git

The JSON files in this repository are generated and updated daily using the NVD's JSON feeds and Travis CI.

Data access: JSON files can also be fetched at https://olbat.github.io/nvdcve/CVE-YYYY-NNNN.json.

Licensing

Common Vulnerabilities and Exposures (CVE®)

The CVE® is maintained by the Mitre Corporation.

The usage of this resource -as well as the JSON files in this repository- is restricted and explained in Mitre CVE®'s Terms of use:

CVE Usage: MITRE hereby grants you a perpetual, worldwide, non-exclusive,
no-charge, royalty-free, irrevocable copyright license to reproduce, prepare
derivative works of, publicly display, publicly perform, sublicense, and
distribute Common Vulnerabilities and Exposures (CVE®). Any copy you make for
such purposes is authorized provided that you reproduce MITRE's copyright
designation and this license in any such copy.

National Vulnerabilitiy Database (NVD)

The National Vulnerability Database is the U.S. government repository of standards-based vulnerability management data represented using the Security Content Automation Protocol (SCAP).

It is a superset of the CVE® dictionary augmented with additional analysis, a database, and a fine-grained search engine.

Usage restrictions of this resource are described in the NVD's FAQ:

All NVD data is freely available from our XML Data Feeds. There are no fees,
licensing restrictions, or even a requirement to register. All NIST
publications are available in the public domain according to Title 17 of the
United States Code. Acknowledgment of the NVD  when using our information is
appreciated. In addition, please email [email protected] to let us know how the
information is being used.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].