Search All Data Vulnerabilities Products Vendor Data Exploits Advisories RSS/Atom Feeds Code Changes Github Data Scanners, Tools Videos OVAL Definitions Authors/People Threats Web Data CWE Definitions CAPEC Definitions Tags Emails Tweets Alerts API Documentation
You can have your own private VulnIQ instance for a very reasonable total cost of ownership.

What's VulnIQ?

VulnIQ collects and processes data from various sources and makes all data available via APIs.
Supported data types:
  • CVEs
  • Exploits
  • Vendor advisories
  • Open Vulnerability and Assessment Language, OVAL, definitions
  • CWE and CAPEC data
  • Threat data in STIX 2.0 format
  • Any git repository
  • Any web page
  • RSS or Atom feeds
  • Emails
  • Tweets
  • Github issues
  • and more...


VulnIQ provides APIs for all data and functionality. You must sign in to obtain an access token.
You can create bearer access tokens to call VulnIQ APIs.

You must send the token in the Authorization header. For example:
curl -v \
-H "Authorization: Bearer eyJzdWIiOiJXX0F..." \
Please note: You cannot send more than 60 requests per minute with a free account.

Terms and Conditions

Use of this service, is subject to these terms and conditions, the agreement last updated on 2020-06-24 (introduces changes to VulnIQ organization and data processing).
Please read the terms and conditions carefully.
This site uses cookies for managing your session and website analytics purposes. Allow Cookies Remove Cookies