Registro de cambios

Versión 14.11.7 (2022-01-15)

Commit 9fa88
Optimization
Improved security of SPF and DMARC. Recommendations were submitted by Nikhil Rane.
Commit 9fa88
Optimization
Improved security and usability of signup procedure and passwort recovery procedure. Recommendations were submitted by Nikhil Rane.

Versión 14.11.6 (2022-01-14)

Commit 68c68
Optimization
Layout optimization of certain forms using additional information or CAPTCHA elements.

Versión 14.11.5 (2022-01-13)

Commit ac2a6
Optimization
Performance tweaks of certain views.

Versión 14.11.4 (2022-01-12)

Commit 28f48
Optimization
Highly improved performance of APT actor analysis. Especially such with many known indicators of compromise.

Versión 14.11.3 (2022-01-11)

Commit b59d0
Optimization
Performance and memory optimization of certain queries which do not need CTI data to be shown.

Versión 14.11.2 (2022-01-07)

Commit 9ade9
Optimization
Multi-threading has been optimized to decrease ressource consumption and to increase performance.
Commit 509bb
Optimization
External links in the table of contents of the Knowledge Base open a new window.

Versión 14.11.1 (2022-01-05)

Commit 545a1
Optimization
Better performance for quick APT actor identification on the front page.

Versión 14.11.0 (2022-01-04)

Commit bfdcd
Feature

Customer request
It is possible to do a CTI analysis of dedicated entries to show activities, interest distribution, active actors, and indicators of compromise. This feature requires an additional CTI license.

Versión 14.10.2 (2021-12-28)

Commit f43dd
Bugfix
Users hiding their profile were not able to show their own profile. This has been fixed.

Versión 14.10.1 (2021-12-24)

Commit 8b772
Optimization

Customer request
Scrollbars on Mozilla browsers are styled or even hidden whenever useful to provide a better user experience on smaller screens.

Versión 14.10.0 (2021-12-23)

Commit ac413
Feature
The new status page shows the status, load and utilization of service components.

Versión 14.9.0 (2021-12-22)

Commit a0614
Feature
VulDB has been officially approved by the CVE program as a CVE Numbering Authority (CNA). We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. Users may flag new vulnerability submissions to get a CVE. More information in our official press release.
Commit e8c35
Optimization
Cyber threat intelligence activity scores on the front page are shown as bars to indicate heat faster.

Versión 14.8.1 (2021-12-18)

Commit 158db
Optimization
Improved the order of the user menu on the Arabic edition of the site.

Versión 14.8.0 (2021-12-17)

Commit bb5ae
Feature

Customer request
Language support for Russian (ru). This includes basic parts of the web site and vulnerability details.

Versión 14.7.0 (2021-12-14)

Commit c958e
Feature
Our bug bounty is fully compliant with draft-foudil-securitytxt-12. You will find the current file at /.well-known/security.txt
Commit d754b
Optimization
Additional intelligence of the search engine tries to determine potential product definitions. This increases accuracy of search requests.

Versión 14.6.0 (2021-12-12)

Commit f4d42
Feature
Views with custom RSS feeds show an icon at the breacrumb navigation.

Versión 14.5.0 (2021-12-11)

Commit 5e850
Feature
Entires in the Knowledge Base are linked to the table of contents to provide better accessibility of information.
Commit d184f
Optimization
Slightly improved confirmation email messages for moderated submissions.

Versión 14.4.1 (2021-12-10)

Commit 5213b
Optimization
Commit details show more information and link to additional ressources.
Commit 03ef5
Optimization
Performance optimization of the front page which loads the vulnerability of the day much faster.

Versión 14.4.0 (2021-12-09)

Commit 53394
Feature

Customer request
All documentation files are moved into the new Knowledge Base. Old links to the documentation remain valid.
Commit e75bd
Optimization
Optimized padding of breadcrumb items provides better usability.

Versión 14.3.1 (2021-12-08)

Commit 9f087
Optimization
New multi-threading handling of expensive database queries increases the performance of many requests and views.

Versión 14.3.0 (2021-12-07)

Commit 0328b
Feature
Added a breadcrumb navigation item to access higher level sections easier.
Commit 20ade
Feature
Release versions in the changelog might be accessed via ID.
Commit ebad6
Bugfix
The user data in the side menu are shown properly even if there are very long strings used.

Versión 14.2.0 (2021-12-06)

Commit 3deae
Feature
CVSSv3 pie chart lists do also include CNA data to improve comparison of different sources.
Commit 06fc8
Optimization
Commits listed in the changelog have type badges for better identification.

Versión 14.1.3 (2021-12-05)

Commit 6ba63
Optimization
Databox with vulnerability of the day uses better search box for increased accessibility.

Versión 14.1.2 (2021-12-04)

Commit ab33b
Optimization
Responsive app elements behave better on smaller rectangular screens.
Commit 07841
Bugfix
All risk views show data properly under any circumstances for authenticated users.

Versión 14.1.1 (2021-12-03)

Commit e5209
Optimization

Customer request
The layout for printing views is optimized for better user experience.
Commit d0822
Optimization
The language path for Japanese is changed from /jp/ to /ja/ to respect ISO 639-1 language two-letter conventions. Old links remain active and redirect to the new URL structure.
Commit fa317
Optimization
The user menu layout has been optimized for better readability. Especially VulDB moderators and administrators get easier access to relevant data.

Versión 14.1.0 (2021-12-02)

Commit e68e7
Feature
Some chart types, especially pie charts and doughnut charts, show an additional legend to provide better visibility of data.
Commit 2fa71
Optimization

Customer request
The responsiveness of the user menu on the side behaves better on smaller screens.
Commit ee455
Optimization
External URLs to MITRE CVE link to the new cve.org domain.

Versión 14.0.1 (2021-12-01)

Commit 786dd
Optimization
Minor optimizations of layout elements of new app layout.
Commit 61570
Optimization

Customer request
The settings page informs users about the character limit for custom alert filters. Purchasing additional licenses is required to extend this limit.

Versión 14.0.0 (2021-11-30)

Commit bb919
Feature

Customer request
Relaunch of the service with a new layout and extended app capabilities.

Versión 13.41.1 (2021-11-11)

Commit a667c
Optimization
Vulnerability entries without user comments show the requested languages, even if English was the only language selected.
Commit 1ff69
Optimization
Layout of the login recommendation to comment on vulnerability entries was optimized.

Versión 13.41.0 (2021-11-10)

Commit 0c2ae
Feature

Customer request
Commercial customers using credit card as payment method are able to show their last invoices online. Invoices and receipts can be downloaded from our partner Stripe. All documents are hosted externally. VulDB does not store credit card details, invoices nor receipts.

Versión 13.40.1 (2021-11-09)

Commit dbc8a
Bugfix
In API 2.28/3.36 the field vulnerability_bugbounty_price is only shown if there is a bug bounty price defined.
Commit 5fe48
Optimization
Performance improvement (CPU and memory consumption) of long list views.

Versión 13.40.0 (2021-11-08)

Commit 505be
Feature

Customer request
in API 2.27/3.35 it is now possible to use URL encoding in advanced search queries to make them much easier to handle.

Versión 13.39.1 (2021-11-06)

Commit 1c057
Bugfix

Customer request
Under rare circumstances a timeframe request did contain entries outside the defined timeframe. Additional validation has been introduced to prevent this effect. Reported by user guliang

Versión 13.39.0 (2021-11-03)

Commit 02e0b
Feature

Customer request
Language support for Portuguese (pt). This includes basic parts of the web site and vulnerability details.

Versión 13.38.0 (2021-11-01)

Commit 49840
Feature

Customer request
Enterprise customers are able to create a custom dashboard with individual charts and lists to maintain their professional vulnerability management.

Versión 13.37.0 (2021-10-29)

Commit ecf36
Feature
External links in vulnerability entries known to be not working anymore are flagged as 404 Not Found.
Commit 00f47
Optimization
In the commit view the column Moderated is renamed to Accepted to indicate the moment a change was approved.

Versión 13.36.2 (2021-10-27)

Commit 6ba60
Optimization
Most recent entries on the frontpage are listed faster and with more details right after the creation of a new entry.

Versión 13.36.1 (2021-10-26)

Commit fe47a
Optimization

Customer request
Overview pages with an huge number of entries are not limited anymore.

Versión 13.36.0 (2021-10-25)

Commit 9d96d
Feature

Customer request
The section exploits shows entries only if an exploit is available for download.
Commit 7b0b6
Feature

Customer request
The exploit prices areseparated from the generic exploit section.

Versión 13.35.1 (2021-10-19)

Commit fab04
Optimization
Optimization of summaries and descriptions in certain languages to better consider the expected vulnerability class of an entry.

Versión 13.35.0 (2021-10-09)

Commit e2c39
Feature

Customer request
The search feature on the web site and the API supports the purl format used to identify a mostly universal package URL. It is predictive and supports extended structures like the advanced search and searching for CPE strings.

Versión 13.34.0 (2021-09-15)

Commit 153c8
Feature
In API 2.26/3.34 information about bug bounty organization vulnerability_bugbounty_organization, price vulnerability_bugbounty_price, and payout date vulnerability_bugbounty_payoutdate were introduced.

Versión 13.33.1 (2021-09-13)

Commit 4280a
Optimization
Improved cache response times for the languages Japanese, Chinese, and Arabic. This provides a better user experience.

Versión 13.33.0 (2021-09-10)

Commit 951ce
Feature

Customer request
Introduction of the CNA CVSSv3 vector and score. The new fields are accessible via vulnerability_cvss3_cna_*. They are available on the web site and the latest API 3.33.

Versión 13.32.4 (2021-09-07)

Commit 759f3
Optimization
Better handling of long strings of commit values shown in commit histories.

Versión 13.32.3 (2021-09-06)

Commit 3c9ba
Optimization
Ranges between versions and up to versions are shown with even higher level of accuracy. This includes titles and summaries as well.

Versión 13.32.2 (2021-09-02)

Commit d29bb
Optimization
Improvement of reliability and performance handling of internal submit queue processing.

Versión 13.32.1 (2021-08-31)

Commit 7ad33
Optimization
Hardware upgrade for better memory and processing handling.

Versión 13.32.0 (2021-08-27)

Commit 90877
Feature

Customer request
Actor analysis lists determined TTP (Tactics, Techniques, Procedures)
Commit 90877
Feature

Customer request
Actor analysis lists determined IOA (Indicator of Attack)

Versión 13.31.0 (2021-08-26)

Commit af5a0
Feature
Overview of APT actors highlights new actors and added indicators of compromise

Versión 13.30.1 (2021-08-25)

Commit a0f19
Optimization
Better matching for CPE searches if the official CPE dictionary is not applied properly.

Versión 13.30.0 (2021-08-24)

Commit 758ae
Feature
CTI Analysis provides a wide variety of statistical data regarding actors and activities.

Versión 13.29.3 (2021-08-23)

Commit 2d4fa
Optimization
Vulnerability comments in a specific language are only shown if the site is loaded in that language.

Versión 13.29.2 (2021-08-22)

Commit 12bbe
Optimization
Finalized data migration to provide much better performance.
Commit 363e0
Optimization
Performance optimization of the year views of CVSSv3, CVSSv2, and Exploits by eliminating redundant queries.

Versión 13.29.1 (2021-08-21)

Commit b2396
Optimization
Eliminated all links to SecurityFocus vulnerability database as they discontinued the service. Thank you for all your contributions to the cyber security industry!
Commit adec0
Optimization
Re-ordered the listing of external ressourced within the reference tables.
Commit 9b464
Optimization
New color scheme for yearly comparison of CVSS base and temp vectors.

Versión 13.29.0 (2021-08-19)

Commit c2a84
Feature
Cyber threat intelligence activity index for software types on the frontpage use machine learning to predict activity index of the future.
Commit 52c88
Optimization
Ranges between versions and up to versions are shown with higher level of accuracy. This includes titles and summaries as well.

Versión 13.28.11 (2021-08-18)

Commit 2f6c2
Optimization
Announcement banner is shown only if necessary to provide the maximum of space.
Commit abbea
Optimization
Time-only statements are now always shown depending on the selected request language.

Versión 13.28.10 (2021-08-17)

Commit 8ae38
Optimization
Vulnerability entries hide header tooltip icons as soon as the screen is too small to read them.

Versión 13.28.9 (2021-08-16)

Commit 51f56
Optimization
Faster calculation and loading of Threat Intelligence activity index chart on the frontpage.

Versión 13.28.8 (2021-08-15)

Commit 2b166
Optimization
Better performance thanks to optimized database index for several different tables.

Versión 13.28.7 (2021-08-08)

Commit 0fc46
Bugfix
Fixed a rare bug on the frontpage where very recent entries are not shown with all available technical details in the title.

Versión 13.28.6 (2021-08-07)

Commit b4035
Optimization
Corrected the right-to-left writing of HTML titles in the Arabic language version of the service.

Versión 13.28.5 (2021-08-05)

Commit 98081
Optimization
Optimized the capabilities of searching with CPE strings. Such searches are now much faster and more accurate.

Versión 13.28.4 (2021-08-04)

Commit b697e
Optimization

Customer request
Aligned the listing of entry_changelog to show the field name of vulnerabilitycenter_lastupdatedate correctly. This issue was reported by Fergus Nelson.
Commit 006fc
Bugfix

Customer request
Under certain circumstances the calculation of exploit prices was not happening. This has been fixed. This bug was reported by Fergus Nelson.

Versión 13.28.3 (2021-08-02)

Commit 9864d
Optimization
External redirects first tested for malicious code are using HTTP status code 301 Moved Permanently instead of 302 Found.

Versión 13.28.2 (2021-07-28)

Commit 8a3ac
Optimization
Better layouting of the payment site for all languages.

Versión 13.28.1 (2021-07-27)

Commit 293f1
Bugfix
Rare date format issue for Chinese, Japanese, and Arabic is corrected.

Versión 13.28.0 (2021-07-26)

Commit 5f4e7
Feature

Customer request
Language support for Arabic (ar). This includes basic parts of the web site and vulnerability details. Right-to-left is implemented whenever required.

Versión 13.27.4 (2021-07-24)

Commit 7430f
Optimization
Current CTI scores in overviews are loaded and shown much faster which improves speed of site generation.
Commit 7430f
Bugfix
Current CTI scores are shown in overviews in any case even if the servers are under heavy load.
Commit 7430f
Bugfix
Current CTI scores in overviews show the correct timestamp of the last update for the most recent entries in the tooltip of the field.

Versión 13.27.3 (2021-07-17)

Commit 6861b
Optimization
Better import and validation handling for APT actor IoC moderation to improve processing and quality.

Versión 13.27.2 (2021-07-16)

Commit 363b6
Optimization
Clarification of titles of privilege escalation vulnerabilities. Remote issues that require some form of authentication are shown as Privilege Escalation without mentioning of Remote. Only remote issues without authentication are shown as true Remote Privilege Escalation.
Commit 61142
Bugfix

Customer request
Fixed a rare bug in API 1.11/2.24/3.31 that created an associative array for software_version if the list of versions numbers contained the value 0. Thanks to Fergus Nelson for reporting this issue.

Versión 13.27.1 (2021-07-15)

Commit 6e469
Bugfix
Fixed a bug in the web entry view that undefined CVSSv2 vectors were shown with the value X instead of ND.
Commit 6e469
Bugfix
Fixed a bug in API 1.10/2.23/3.30 that undefined CVSSv2 vectors were shown with the value X instead of ND.
Commit 6e469
Bugfix
Fixed a bug in overviews to show tooltips for different CVSS sources of CVSSv3 Meta Temp Scores.

Versión 13.27.0 (2021-07-14)

Commit cc0e3
Feature

Customer request
Cyber threat intelligence events display emerging, current, and upcoming activities by actors.
Commit dacc3
Bugfix
Fixed a bug that temp scores of CVSS vectors are not properly stored during initial entry create. This did not affect updated entries.

Versión 13.26.4 (2021-07-07)

Commit 84a8b
Optimization
New layout for changelog for better readability.
Commit ae57e
Optimization
Every commit shown in the changelog contains the commit ID for better reference.
Commit 2e4f6
Optimization
Commits in changelog provide permalink for easier access.

Versión 13.26.3 (2021-06-30)

Commit ea669
Optimization
Reinstated linking to CVEdetails.com as they resumed adding and updating new CVEs.

Versión 13.26.2 (2021-06-25)

Commit 28728
Optimization

Customer request
The Content-Type of all API responses is changed to application/json; charset=utf-8. This is not a change in the API itself which is why the version number of the API endpoints is not incremented.

Versión 13.26.1 (2021-06-24)

Commit 0d89b
Optimization

Customer request
The official vulnerability API endpoint is located at /?api and will redirect faulty URLs and GET parameters. Microsoft Power Apps did not respect this URL structure and changed the query string to a parameter tuple with an empty value. Our API endpoint redirected to the correct URL but Power Apps is not capable of following such HTTP redirects. This issue got fixed as Power Apps is now allowed to access the API endpoint even though the request URL format is not entirely correct.

Versión 13.26.0 (2021-06-18)

Commit e9063
Feature

Customer request
In API 2.22/3.29 the field vulnerability_attck was made available. It contains the identifier of the associated MITRE ATT&CK technique.

Versión 13.25.3 (2021-06-16)

Commit 0494b
Optimization
Performance optimization during stress (e.g. many users, DDoS attacks).
Commit 9660e
Optimization
Changed the algorithm to generate the category values local and remote in the RSS feeds. Also added the value partial for local if the attack vector is physical.

Versión 13.25.2 (2021-06-15)

Commit 55449
Optimization
Dedicated approval and handling of permissions to use extended CTI features.
Commit 00931
Optimization
The user profile shows details about the purchased CTI license.
Commit 0552f
Optimization
Better performance of generation of user menu for authenticated users.

Versión 13.25.1 (2021-06-14)

Commit fd133
Optimization
More accurate timing information about new IoC (Indicator of Compromise) assigned to an APT actor.

Versión 13.25.0 (2021-06-11)

Commit ed936
Feature
New IoC (Indicator of Compromise) assigned to an APT actor are shown in the community activity stream on the frontpage.

Versión 13.24.1 (2021-06-09)

Commit 0d01f
Optimization
Optimized abuse detection of search queries for authenticated users.

Versión 13.24.0 (2021-06-08)

Commit efc17
Feature
Current APT actor activities are shown on the community activity stream on the frontpage.

Versión 13.23.0 (2021-06-07)

Commit 94a1e
Feature
Dedicated access to CTI features in the item threat of the main menu.
Commit fc8b2
Feature

Customer request
Access to APT actor information to show activities, interest distribution, indicators of compromise, and external references. The analysis is based on unique activity data ranging back to 2016.
Commit fc8b2
Feature
Access to country-specific information to show activities and interest distribution.

Versión 13.22.1 (2021-06-04)

Commit 03370
Optimization
Timelines indicating activities show the so called activity index instead of the generic entries label.
Commit 03359
Optimization
Bar charts showing exploit prives use exploit instead of the generic entries label.

Versión 13.22.0 (2021-05-31)

Commit 7dc24
Feature

Customer request
Views with threat intelligence focus show APT actors identified during CTI activity analysis.
Commit 5ada2
Feature
Titles of charts link to drilldown sites whenever possible.

Versión 13.21.0 (2021-05-26)

Commit edf52
Feature

Customer request
Language support for Japanese (jp). This includes basic parts of the web site and vulnerability details.

Versión 13.20.4 (2021-05-18)

Commit 02cd6
Optimization
The event of web code improvement shown in the community stream links to the changelog.
Commit e9923
Optimization
In API 1.9/2.21/3.28 requests by the official Splunk app with a license of less than 10 API credits will throw an 403 Splunk app license expired error to prevent stressing the service with expired Splunk installations.

Versión 13.20.3 (2021-05-12)

Commit b4953
Optimization
Streamlined entry identifier wording on community activity stream on the frontpage.

Versión 13.20.2 (2021-05-04)

Commit 8d247
Optimization
The changelog does contain the version number of the service.
Commit 5421d
Optimization
All major releases are shown in the changelog with a star.

Versión 13.20.1 (2021-05-02)

Commit b0e75
Optimization
Community activities shown on the frontpage do refer to entries with their corresponding VDB ID to increase readability.

Versión 13.20.0 (2021-04-29)

Commit 0d72f
Feature
Frontpage does now show the latest changelog entries of the current day.
Commit d6b22
Optimization

Customer request
Vulnerability entries do now always contain links to available upgrades and patches in the Countermeasure section.

Versión 13.19.3 (2021-04-28)

Commit 6df70
Optimization
Performance optimization of the Threat Intelligence chart on the frontpage.
Commit d1eb6
Bugfix

Customer request
Fixed an issue where count and overview of user commits were not updated. Reported by user misc

Versión 13.19.2 (2021-04-26)

Commit a9542
Optimization
Hardware upgrade for better memory and processing handling.
Commit 8dd8c
Optimization
In API 3.27 the values of numeric request types is verified and if not acceptable, a 400 Bad request error message is shown.

Versión 13.19.1 (2021-04-24)

Commit 3855b
Optimization
Optimized load balancing, limiter, and DDoS mitigation to provide more stability for legitimate users.

Versión 13.19.0 (2021-04-22)

Commit a85dc
Feature

Customer request
Submitted items are reviewed by an automated pre-parser to define a priority for processing by the moderation team. This increases priority for most important items and therefore improves processing speed.

Versión 13.18.0 (2021-04-20)

Commit 612a5
Feature

Customer request
Language support for Chinese simplified (zh-Hans). This includes basic parts of the web site and vulnerability details.

Versión 13.17.1 (2021-04-16)

Commit b93ed
Optimization
Code optimization of CTI map generation for faster processing with less memory requirements.

Versión 13.17.0 (2021-04-15)

Commit 1ffb5
Feature

Customer request
Description of CTI trigger possibilities and threshold handling to create events and reports.
Commit 881a3
Optimization
Footer does now refer to your specific copyright and license depending whether there is a commercial, enterprise, or reseller license established.

Versión 13.16.0 (2021-04-12)

Commit f7832
Feature

Customer request
Some users mistake their mail address as legitimate username to login. In this case a warning message informs the user about the mistake.

Versión 13.15.3 (2021-04-08)

Commit 265e0
Optimization
Performance optimization for CTI country analysis (closed beta invite only at the moment). Time range analysis is now incremental which makes report generation much faster (especially for larger ranges).

Versión 13.15.2 (2021-03-31)

Commit 05005
Optimization
All listings in the personal profile do contain timestamps to make identification of single items much easier.
Commit cddb4
Optimization
Completed some of the missing translations for French, Italian, Spanish, Polish, and Swedish.
Commit 6dc4a
Optimization
Improved the handling of time format regarding country-specific definitions. The language en will show A.M. and P.M. only if the browser is also set to en-us. Otherwise the 24 hour format is used. If the language is set to fr and the browser announces fr-fr there will be the French format 12h34. The 24 hour format is also used as default for all languages without a specific definition.

Versión 13.15.1 (2021-03-30)

Commit d71be
Bugfix
Fixed a bug where some long product names, product listings and titles did not show the product name in its entirety.
Commit 44ee5
Optimization
In API 3.26 fixed an issue where queries for advisory_date_start, entry_timestamp_create_start, entry_timestamp_change_start, and entry_timestamp_all_start did not work properly if the request value had a trailing whitespace.

Versión 13.15.0 (2021-03-29)

Commit 15c50
Feature
The personal API history does show the execution time for a request to help optimize queries. The column is shown as seconds and sortable.
Commit c4d04
Feature

Customer request
Added planned features in a roadmap to announce upcoming functionality. The items shown are just suggestions and might change regarding implementation and deployment.

Versión 13.14.3 (2021-03-28)

Commit 1ec36
Optimization

Customer request
Better description of update handling, especially prioritization of new data for existing entries and update requests by customers.
Commit ae8c3
Optimization
Optimized the description of different commit moderation approaches. The actions for handling spam and profanity are explained in detail.

Versión 13.14.2 (2021-03-26)

Commit 206df
Bugfix
In API 2.20/3.25 the list of multiple items in software_affectedlist and software_notaffectedlist do trim trailing whitespaces correctly.

Versión 13.14.1 (2021-03-25)

Commit a8cdf
Optimization
Added a new community rank Guru which requires 5000 points to be reached. Therefore, Grand Master is not the highest rank anymore.

Versión 13.14.0 (2021-03-24)

Commit 434e3
Feature

Customer request
Introduced API 3.24 with the new request type entry_timestamp_all_start which combines new items from entry_timestamp_create_start and updated items from entry_timestamp_change_start in a single stream.

Versión 13.13.1 (2021-03-20)

Commit 26de8
Optimization
Optimized speed and memory consumption of queries based on LIKE statements in search queries.

Versión 13.13.0 (2021-03-17)

Commit 1daf9
Feature

Customer request
Documentation of the different levels used in the field exploit_exploitability shown on multiple listings on the web site.

Versión 13.12.0 (2021-03-10)

Commit 699d0
Feature

Customer request
Made internal changelog public to provide full transparency for our customers. Entries earlier than 2020 just show milestones and not detailed changes.
Commit 43dfe
Feature
Added link to changelog under support in main menu and in the footer of the page.
Commit c0ba0
Optimization
Updated internal quality guidance for CVSS fields during creation of new entries based on official Microsoft disclosures.

Versión 13.11.3 (2021-03-08)

Commit 1faf6
Optimization
Updated internal quality requirements for advisory_person_name and advisory_person_nickname fields to prevent inaccurate information during daily update procedure.

Versión 13.11.2 (2021-03-04)

Commit ecf32
Optimization
Optimized limiter to prohibit crawling of view elements by non-commercial users.
Commit fa612
Optimization
Limiter uses better geolocation data to prevent malicious users from changing IP addresses to slow down detection of abuse.

Versión 13.11.1 (2021-03-03)

Commit 09cef
Bugfix
Fixed a rare German translation issue in a specific sentence of some vulnerability summaries.

Versión 13.11.0 (2021-03-01)

Commit 17052
Feature
Prepared language database for upcoming translations.
Commit b3dfc
Optimization
Optimized language database for better performance.

Versión 13.10.0 (2021-02-28)

Commit 021d4
Feature
CTI Analysis (closed-beta only) supports search strings for technology-specific research.

Versión 13.9.0 (2021-02-22)

Commit e7965
Feature
Added user element under search in main menu.
Commit 7ed21
Optimization
Optimized internal CTI event analysis module.

Versión 13.8.0 (2021-02-04)

Commit 5626b
Feature
Added load balancing features to handle performance peaks much better.
Commit 2efad
Feature
Enabled priority module to provide high-availability for enterprise customers.

Versión 13.7.1 (2021-02-03)

Commit 167ac
Optimization
Optimized normalize module to improve quality assurance of vulnerability data management.

Versión 13.7.0 (2021-02-01)

Commit 14106
Feature
Initiated preparation for port of web services to PHP8. First polyfill functions tested.

Versión 13.6.1 (2021-01-17)

Commit bdc13
Bugfix
Fixed a bug where some new user submissions were shown as rejected even though they were still not processsed yet. This issue was reported by user misc.

Versión 13.6.0 (2021-01-16)

Commit 960f5
Feature
Start of internal testing for CTI attribution module to identify APT group activities as such. Used by CTI team to create CTI alerts and infos for paying customers.

Versión 13.5.4 (2021-01-09)

Commit d53a8
Optimization

Customer request
Changed entry_timestamp_delta behavior from 7200 to 120 to keep commit grouping much smaller. Entries updated within a short period of time will pushed into the update stream to provide the most actual data to API users.

Versión 13.5.3 (2021-01-04)

Commit 96326
Optimization
Performance improvement of search engine. Early dissection will speed up some specific search requests.
Commit 96326
Optimization
Performance improvement of monoblock engine. Compilation of entries is a bit faster under certain circumstances.

Versión 13.5.2 (2020-12-23)

Commit db3d5
Optimization
Unordered lists in regular content to not a a maximum heigh and auto scrollbars anymore.

Versión 13.5.1 (2020-12-15)

Commit c227f
Optimization
Performance optimization of monoblock data processing.

Versión 13.5.0 (2020-12-09)

Commit 93707
Feature
Added a stylesheet to display "time ago" for stream items.

Versión 13.4.0 (2020-12-08)

Commit dcd32
Feature
In API 3.23 added request type cursorinit to determine ideal initial cursor position for ongoing vulnerability stream (e.g. Splunk).

Versión 13.3.0 (2020-12-04)

Commit 3abdf
Feature
Introduced information regarding ATT&CK. The fields are currently auto-generated and not part of the monoblock.
Commit dbcd2
Feature
In API 2.19/3.22 added field source_cve_cna which contains a string of the CVE Numbering Authority that assigned the CVE.
Commit 118c6
Bugfix
Corrected a display bug for tooltips of CVSS fields on certain overview pages.

Versión 13.2.1 (2020-12-03)

Commit 6c403
Optimization
Optimized signup flood protection to prevent malicious users from auto-generating community accounts.

Versión 13.2.0 (2020-11-26)

Commit 0cd93
Feature
Added new import feature for vulnerability moderators to handle custom entries and large batches of submissions.
Commit a4571
Feature
The differences in a diff view are highlighted by color to provide better visibility.

Versión 13.1.2 (2020-11-13)

Commit 7983d
Optimization
Performance optimization of monoblock data processing.

Versión 13.1.1 (2020-11-06)

Commit c87a7
Optimization
Migration to new hardware.

Versión 13.1.0 (2020-11-02)

Commit f6cc6
Feature
Paying customers do now see a summary on top of every vulnerability entry to identify the most important aspects of the vulnerability.

Versión 13.0.1 (2020-10-16)

Commit 68339
Optimization
Optimized some indexes within the database to improve performance.

Versión 13.0.0 (2020-10-09)

Commit 8b201
Feature
Introduced new monoblock structure to provide more possibilities like commits, commit histories, etc.

Versión 12.26.1 (2020-09-26)

Commit b11f4
Optimization
Better, faster, and more accurate calculation of CTI interest scores.

Versión 12.26.0 (2020-09-10)

Commit b015c
Feature
The live symbol is pulsating.
Commit 2d270
Optimization
The CSS code for the custom worldmap is deleted to stramline the CSS file.

Versión 12.25.1 (2020-08-10)

Commit b3264
Optimization
Optimization of browser rendering speed by adding font-display: swap to the CSS style sheet.

Versión 12.25.0 (2020-05-16)

Commit f6e38
Feature
Added an optimization banner to inform users about upcoming changes and features.

Versión 12.24.0 (2020-05-13)

Commit 58be3
Feature
New horizontal table style to make some upcoming views better readable.

Versión 12.23.5 (2020-05-01)

Commit e655c
Optimization
Upgrading to an extended server cluster for better performance.

Versión 12.23.4 (2020-04-17)

Commit ee0cc
Bugfix
In API 3.21 the field entry_timestamp_change is now always present even if the entry was just created and never updated yet. In this case it will contain the same value like entry_timestamp_create. User of the official VulDB Splunk App are advised to update to the latest release.

Versión 12.23.3 (2020-03-04)

Commit 328c8
Optimization
CVEdetails.com stopped updating their database. We keep linking old CVEs to their sites but do not do so for newer entries.

Versión 12.23.2 (2020-01-10)

Commit ce27f
Optimization
Added validation styles for numbers, dates, emails, and urls for forms. These detect missing or wrong data before submitting a form.

Versión 12.23.1 (2019-11-19)

Commit 7d12f
Optimization
Decreased the font-size of labes from 90% to 75% for better readability.
Commit c8999
Optimization
Improved style and layout of tooltips for better readability.

Versión 12.23.0 (2019-11-15)

Commit 5c4b5
Feature
Load new pages with extended loading time show progress bar spinner at top of the site.

Versión 12.22.0 (2019-11-09)

Commit c4f43
Feature
Added logos of vendors/products in entries if available.
Commit 46f6e
Optimization
Stramlined CSS style sheet regarding mini buttons.

Versión 12.21.0 (2019-11-08)

Commit 4f1af
Feature
Added tooltips for easier access to more information.
Commit 63433
Optimization
Added fade effect for mini buttons for a better user experience.

Versión 12.20.1 (2019-11-06)

Commit 01634
Optimization
Stramlined box elements and columns.

Versión 12.20.0 (2019-10-31)

Commit 032a9
Feature

Customer request
In API 3.20 added field vulnerability_name which contains a string or array a popular names of the vulnerability (e.g. Shellshock, Poodle).

Versión 12.19.0 (2019-09-13)

Commit eaf94
Feature

Customer request
In API 3.19 added field family entry_details_* which contain entry_details_affected, entry_details_vulnerability, entry_details_impact, entry_details_exploit, entry_details_countermeasures, and entry_details_sources.

Versión 12.18.0 (2019-08-31)

Commit 34a45
Feature
In API 3.18 added field entry_replaces to display duplicates which have been replaced by this entry.

Versión 12.17.0 (2019-08-26)

Commit 3974b
Feature
In API 3.17 added fields vulnerability_cvss3_basevector_vuldb and vulnerability_cvss3_tempvector_vuldb to display full VulDB CVSSv3 vectors easily.

Versión 12.16.0 (2019-08-22)

Commit 3ef93
Feature
Added experimental world map to highlight CTI activities.
Commit 5054e
Optimization
Improved the layout of checkboxes on web forms.

Versión 12.15.0 (2019-07-06)

Commit e5808
Feature

Customer request
VulDB administrators are able to provide DB dumps for faster onboarding of enterprise customers.

Versión 12.14.0 (2019-07-01)

Commit 2fcc6
Feature

Customer request
Introduction of software type categories available in the field software_type.

Versión 12.13.3 (2019-06-04)

Commit dd112
Bugfix
In API 3.16 fixed value of field advisory_identifier, disabled safeguard mechanism to prevent inconsistency in result count.

Versión 12.13.2 (2019-06-01)

Commit 26f6b
Optimization
Updated the Data Privacy Notice to clarifying wording and added details about payment processing.

Versión 12.13.1 (2019-05-27)

Commit 6e92e
Optimization
Added loading bar on top of the page to indicate the loading of large pages.

Versión 12.13.0 (2019-05-24)

Commit bcb85
Feature
Submitting forms locks input fields and shows progress indicator.

Versión 12.12.0 (2019-05-17)

Commit c9222
Feature
In API 3.15 added fields software_website_vendor and software_website_product to the output.

Versión 12.11.0 (2019-05-08)

Commit 0fb91
Feature
In API 3.14 requesting dedicated CVSS fields supports the official response format (e.g. vulnerability_cvss3_vuldb_basescore) and the legacy format (e.g. vulnerability_cvss3_basescore_vuldb). The legacy format will be dropped in a future major release of the API.

Versión 12.10.1 (2019-04-24)

Commit 1dc8a
Optimization
Improved the layout of the search menu item for better accessibility.
Commit bb0d0
Optimization
The status boxes of live views are now pulsating if there is currently some activity.

Versión 12.10.0 (2019-04-17)

Commit d1042
Feature

Customer request
In API 1.8/2.18/3.13 added field software_cpe23 which introduces full CPE 2.3 support whereas software_cpe is still providing CPE 2.2 data.

Versión 12.9.0 (2019-04-15)

Commit 3bfed
Feature
Added a detailed clendar view for years an months.
Commit faa07
Optimization
Streamlined the row behavior.

Versión 12.8.2 (2019-04-10)

Commit 35519
Optimization
Hovering a clickable symbol in an overview will now be indicated by the cursor as pointer.
Commit cdf7b
Optimization
Improved the layout of buttons inside text boxes (e.g. searches).

Versión 12.8.1 (2019-04-01)

Commit 27ca6
Optimization
Centered the purchase table for better accessibility.

Versión 12.8.0 (2019-03-29)

Commit 54a22
Feature

Customer request
Added the possibility to purchase new licenses online.

Versión 12.7.0 (2019-03-21)

Commit e4bb6
Feature
Added the possibility to search within the main menu.

Versión 12.6.0 (2019-03-15)

Commit d3ac7
Feature

Customer request
Added multiple levels to the main menu to provide better accessibility to the variety of features.
Commit 35f3e
Feature
Added the possibility for buttons within textboxes (e.g. searches).

Versión 12.5.0 (2019-03-08)

Commit 1ae53
Feature
Vulnerability entries do now show the exploit prices with a graphical element.
Commit 74f44
Optimization
Improved the display of symbols in overviews.

Versión 12.4.0 (2019-03-04)

Commit 55a0e
Feature
In API 1.7/2.17/3.12 added fields entry_locked_status and entry_locked_reason to inform about entries undergoing update and review processes (they might change soon).

Versión 12.3.0 (2019-03-01)

Commit 81d15
Feature
Introduction of the C3BM Index (CVSSv3 Base Meta Index) based on CVSS data of multiple sources.

Versión 12.2.0 (2019-02-28)

Commit 231a4
Feature
Large tables might be shown with a striped layout to improve readability.
Commit 16d23
Optimization
Improved the layout of buttons in the user submenu.

Versión 12.1.0 (2019-02-25)

Commit 9c6de
Feature

Customer request
Symbols in overviews are clickable to provide a drilldown feature. This is true for CVSS, exploit prices, exploitability, and countermeasures.
Commit 92aac
Optimization
Header text is now a graphical element.

Versión 12.0.4 (2019-02-23)

Commit 82de5
Optimization
Slightly changed the colorization of remedation and exploitability levels.

Versión 12.0.3 (2019-02-22)

Commit 55aa5
Optimization
Changed the pointer behavior of certain table headers from grab to regular pointer.

Versión 12.0.2 (2019-02-21)

Commit 81d16
Optimization
Streamlined user menu buttons.
Commit 81d16
Optimization
Streamlined exploitability fields.

Versión 12.0.1 (2019-02-20)

Commit 2d300
Optimization
In API 1.6/2.16/3.11 improved speed, reliability and accuracy of updates queries.
Commit d6d17
Optimization
Improved the width behavior of user menu buttons.
Commit a25da
Optimization
Links in overviews are clickable within the whole cell and not just on the text itself.

Versión 12.0.0 (2019-02-18)

Commit b9184
Feature

Customer request
New overviews introduced with a lot of information items.
Commit 65679
Feature
Added support for dynamic behavior for long tables with more than six columns.
Commit 4c719
Optimization
Streamlined the behavior of content and article.
Commit 4c719
Optimization
Streamlined the behavior of tables.
Commit 4c719
Optimization
Streamlined the behavior of buttons.

Versión 11.27.0 (2019-02-15)

Commit c278e
Feature
Added the posibility to fade-in some elements for a better user experience.
Commit 07fdc
Optimization
Improved the width behavior of user menu buttons.

Versión 11.26.0 (2019-02-08)

Commit 7324e
Feature
Added buzzboxes to show statistical data about the project.
Commit 3b784
Optimization
Optimized the margin behavior of columns.

Versión 11.25.0 (2019-02-06)

Commit 250b0
Feature

Customer request
In API 3.10 added request parameter offset to set a starting point for results (pagination).

Versión 11.24.1 (2019-02-01)

Commit 5d94f
Optimization
Reached the 10.000th community user. Congratulations!

Versión 11.24.0 (2019-01-18)

Commit c5ee2
Feature
In API 3.9 added field software_type.

Versión 11.23.0 (2019-01-11)

Commit dfb03
Feature

Customer request
In API 3.8 VulDB CVSSv3 scores use AI-driven autocomplete based on historical data and additional sources. The field vulnerability_cvss3_vuldb_confidence indicates the confidence of the vectors.

Versión 11.22.1 (2019-01-08)

Commit 608e1
Bugfix
In API 1.5/2.15/3.7 field software_component is not returning multiple fields anymore to prevent parsing errors.

Versión 11.22.0 (2019-01-01)

Commit 772cf
Feature
Enabling real-time views of recent and updated entries. You are now able to see the moderation time at work.

Versión 11.21.0 (2018-12-13)

Commit 1deb7
Feature

Customer request
In API 1.4/2.14/3.6 requesting details without unlocked archive access will warn in field entry_warning about limitation.

Versión 11.20.0 (2018-10-28)

Commit d4c8e
Feature
Large quantities of statistical views are created by Cronjobs to improve performance.

Versión 11.19.0 (2018-10-01)

Commit 3b088
Feature

Customer request
Launch of Video Tutorial Series on YouTube to introduce new users to the capabilities of the service.

Versión 11.18.1 (2018-09-20)

Commit c4d5c
Optimization
Changed the cursor behavior for votes from copy to default.
Commit c4d5c
Optimization
Changed the cursor behavior of ribbons to default.

Versión 11.18.0 (2018-09-18)

Commit afb23
Feature
Added custom ribbons to popup with interesting details if needed.
Commit 8ee7c
Optimization
Improved the behavior of items which have a fade-in effect.

Versión 11.17.0 (2018-09-01)

Commit 8dfe7
Feature

Customer request
Release of official Splunk App which is available on Splunkbase for free. Commercial or enterprise license is recommended.

Versión 11.16.0 (2018-08-31)

Commit c00a7
Feature

Customer request
Introduction of CPE lists in entry views to indicate the affected products.

Versión 11.15.0 (2018-08-06)

Commit 9e978
Feature
In API 3.5 support for the queries advisory_date_start, entry_timestamp_create_start, entry_timestamp_change_start.
Commit 576a2
Optimization

Customer request
Disabled the gradients in symbols.

Versión 11.14.4 (2018-08-04)

Commit 48a03
Optimization
Fixed an issue with the visibility of long date symbols.

Versión 11.14.3 (2018-08-03)

Commit 7d763
Optimization
Improvement of gradient in symbols.
Commit 856af
Optimization
Adding support for other font families in symbols.

Versión 11.14.2 (2018-08-02)

Commit b0000
Optimization
Introduction of gradients in symbols.

Versión 11.14.1 (2018-08-01)

Commit 7ef2d
Optimization
Introduction of antialiasing of fonts for better readability on high-resolution displays.

Versión 11.14.0 (2018-07-31)

Commit dc2ae
Feature
Added support for stream symbols shown on overviews.

Versión 11.13.1 (2018-07-22)

Commit b675b
Optimization
Improved the layout of mini buttons.

Versión 11.13.0 (2018-07-12)

Commit b1af8
Feature

Customer request
Added dynamic layouts for tables to hide certain columns under specific conditions. This improves the mobile view a lot.

Versión 11.12.1 (2018-07-10)

Commit d5a10
Optimization
Optimized the margin of header elements.

Versión 11.12.0 (2018-07-06)

Commit bc316
Feature
Introduction of the user menu for authenticated users. This menu shows additional details and provides access to more features.

Versión 11.11.3 (2018-07-05)

Commit be3b7
Optimization
A new table wrapper optimizes how tables are shown on different screen sizes.

Versión 11.11.2 (2018-07-04)

Commit c4570
Optimization
Streamlining of cvss lists.

Versión 11.11.1 (2018-06-29)

Commit 7409e
Optimization
Streamlining of mini button for unlock announcements.

Versión 11.11.0 (2018-06-28)

Commit b09c3
Feature
Introduction of column views, as used in the documentation section of the service.

Versión 11.10.1 (2018-06-12)

Commit 76199
Bugfix

Customer request
In API 2.13/3.4 fixed enforcement of querylimit for details=0 queries. This issue was reported by user portal.

Versión 11.10.0 (2018-06-11)

Commit 361d1
Feature
In API 3.3 added CVSS meta score support with vulnerability_cvss3_meta.

Versión 11.9.4 (2018-06-10)

Commit 2ed12
Optimization
Streamlining of mini buttons.

Versión 11.9.3 (2018-06-08)

Commit 88f01
Optimization
Mini buttons do now animate on hover.

Versión 11.9.2 (2018-06-06)

Commit 216df
Bugfix

Customer request
In API 1.3/2.12/3.2 fixed wrong values in response_remaining (calculation was correct, value shown was wrong). This issue was reported by user portal.

Versión 11.9.1 (2018-06-04)

Commit 6d6d9
Bugfix
In API 1.2/2.11/3.1 fixed default sort order of recent and updates requests.

Versión 11.9.0 (2018-05-18)

Commit ab9a7
Feature

Customer request
Introduced API 3.0, which moved vulnerability_cpe to software_cpe.

Versión 11.8.0 (2018-05-15)

Commit 38be8
Feature
In API 2.10 added software_affectedlist and software_notaffectedlist.
Commit 38be8
Feature
In API 2.10 added vulnerability_risk (also shown in non-detail responses).

Versión 11.7.1 (2018-05-14)

Commit 1d0c8
Optimization

Customer request
In API 2.9 added detailed error messages regarding API key problems (missing, wrong, unknown, valid).
Commit 1d0c8
Optimization
In API 2.9 enterprise customers have performance priority over free users.

Versión 11.7.0 (2018-05-08)

Commit a20db
Feature
In API 2.8 the field entry_title does not show CVE anymore.
Commit a20db
Feature
In API 2.8 added fields vulnerability_timeline, countermeasure_reactiondays, countermeasure_0daydays, countermeasure_exposuredays, and countermeasure_exploitdelaydays.

Versión 11.6.0 (2018-05-07)

Commit 7e839
Feature

Customer request
In API 2.7 added support for request type topsoftware.

Versión 11.5.0 (2018-05-01)

Commit c968e
Feature
Made Data Privacy Notice available to comply with european GDRP requirements.

Versión 11.4.0 (2018-04-01)

Commit 3bdb9
Feature
Release of Alexa Skill to make vulnerability management possible with the AI by Amazon. More information.

Versión 11.3.0 (2018-03-22)

Commit b90e6
Feature

Customer request
Working on a proof-of-concept to use Alexa as a gateway to work with vulnerability data.

Versión 11.2.3 (2018-02-17)

Commit f3590
Optimization
Introduction of a container element to have more flexibility with layout positioning on the web frontend.

Versión 11.2.2 (2018-02-01)

Commit 51a81
Optimization
Introduction of a sub-title on the site title to better describe the service.

Versión 11.2.1 (2018-01-29)

Commit 2638b
Optimization
Official approval of VulDB by Norton Site Checker. The service is rated as safe.

Versión 11.2.0 (2018-01-22)

Commit 49bb7
Feature
Upgrade to API 2.0. Response contains three elements (request, response, result) instead just the results.

Versión 11.1.1 (2017-09-23)

Commit aebb3
Optimization
Improvement of the container margins to have a better layout.

Versión 11.1.0 (2017-09-16)

Commit 05eb4
Feature
Partnership with Titanium Team of scipag to establish Cyber Threat Intelligence services (CTI). More information.

Versión 11.0.1 (2017-06-02)

Commit 45634
Optimization
Optimization of automated exploit price calculation to gain more accuracy.

Versión 11.0.0 (2017-06-01)

Commit a862d
Feature
Introduction of dynamic graphs shown in different views.

Versión 10.12.2 (2017-05-19)

Commit a7bd0
Optimization
Optimization of the official Twitter feed.

Versión 10.12.1 (2017-05-16)

Commit 93c6e
Bugfix
Fixed a display issue on the frontpage. Under certain circumstances new items were not shown as bold.

Versión 10.12.0 (2017-04-28)

Commit 7a1d8
Feature
Added dynamic charts in the results overview of web searches.

Versión 10.11.0 (2017-04-21)

Commit e7f52
Feature
Added dynamic charts of all kind of overview pages.

Versión 10.10.0 (2017-04-10)

Commit 97ed5
Feature
Created an About page which explains the history of our vulnerability service.

Versión 10.9.0 (2017-04-01)

Commit 3d204
Feature
Added the 100.000th entry to the database. Check the stats for more details. Congratulations!

Versión 10.8.0 (2017-03-22)

Commit 1f1f6
Feature

Customer request
Vulnerability entries flagged as false-positive do now highlight this fact on their pages (title and introduction).

Versión 10.7.0 (2017-03-21)

Commit 2eb19
Feature
Introduced data for OVAL and IAVM. Completed all existing entries with appropriate data.

Versión 10.6.0 (2017-02-23)

Commit f7af4
Feature

Customer request
Supporting CVSS scores from multiple sources (VulDB, vendor, researcher, NVD).

Versión 10.5.1 (2017-02-13)

Commit 915e2
Optimization
Optimized the indexing of the database to improve search performance.

Versión 10.5.0 (2017-02-01)

Commit a1e82
Feature
Public availability of community edition. Create your account for free.

Versión 10.4.1 (2017-01-20)

Commit ed89a
Optimization
Optimized performance by using specific features and configuration settings in PHP7.

Versión 10.4.0 (2017-01-18)

Commit 2eb99
Feature
Added an advanced search on the web site to improve specific search capabilities.

Versión 10.3.0 (2017-01-01)

Commit 766b4
Feature
Start open beta of community edition.

Versión 10.2.0 (2016-12-20)

Commit afa9d
Feature
Introduced Bug of the Day on the front page. One of the more serious or interesting issues of the recent days is shown every day.

Versión 10.1.1 (2016-12-19)

Commit e0724
Optimization
Redesign of the frontpage with a slick layout and better data accessibility.

Versión 10.1.0 (2016-12-16)

Commit 17b00
Feature
Implemented a module to detect loss of data integrity on the service.

Versión 10.0.0 (2016-12-01)

Commit 88cce
Feature

Customer request
Introduction of public API to provide vulnerability for automated processing.

Versión 9.19.1 (2016-11-08)

Commit 1bf65
Optimization
Optimization of database table structures to gain more flexibility and performance.

Versión 9.19.0 (2016-11-07)

Commit 41c1a
Feature
Implementation of Content Security Policy (CSP) to improve web security of the service.

Versión 9.18.0 (2016-11-02)

Commit 2c835
Feature
It is now possible to upvote comments for vulnerability entries. Upvoted comments are shown on top of the list.

Versión 9.17.0 (2016-11-01)

Commit 01762
Feature
Start closed beta of community edition.

Versión 9.16.0 (2016-10-26)

Commit 464dc
Feature
Editing a section of a vulnerability will automatically jump to the correct section of the edit form.

Versión 9.15.0 (2016-10-25)

Commit cbba3
Feature
Existing vulnerability entries can now be edited immediately by members of the moderation team.

Versión 9.14.0 (2016-10-14)

Commit 83203
Feature
Enhanced the existing cache module to allow caching of database queries and results.

Versión 9.13.0 (2016-10-11)

Commit 786cb
Feature
Every user account has now a profile.
Commit 7868e
Feature
Registered users are able to tweak their own configuration of the service.

Versión 9.12.0 (2016-10-10)

Commit b9c2d
Feature
Registered users are able to see history of vulnerability entries they have been viewing earlier.

Versión 9.11.0 (2016-10-07)

Commit 7da47
Feature
Registered users are able to gain community points with activities to get a higher ranking on the site.

Versión 9.10.0 (2016-10-06)

Commit f618b
Feature
Users are able to submit new entries which will be queued and processed by the vulnerability moderation team.

Versión 9.9.0 (2016-10-05)

Commit da14a
Feature
Users accessing ressources which require an authentication receive a proper error message.

Versión 9.8.0 (2016-10-04)

Commit 2f00f
Feature
Users are able to reset their password via email (password recovery).

Versión 9.7.0 (2016-10-03)

Commit 5a1b1
Feature

Customer request
Logins with a new device or from an unknown source will inform the account holder about the potentially suspicious login. New devices are stored and shown in the personal device management overview.

Versión 9.6.0 (2016-06-24)

Commit 688a5
Feature
Added a limiter to prevent malicious users from scraping our data without authorization.

Versión 9.5.0 (2016-06-22)

Commit c4477
Feature

Customer request
Added full support for CVSSv3.

Versión 9.4.0 (2016-10-01)

Commit 0aa68
Feature
Introduction of exploit price calculations to provide a better tool to prioritize exposed vulnerabilies.

Versión 9.3.1 (2016-07-05)

Commit 4aa37
Optimization
Performance optimization for all web views.

Versión 9.3.0 (2016-06-30)

Commit 4aecf
Feature
Some statistical data is now stored in a centralized table which allows them to be shown on multiple places without new calculations every time.

Versión 9.2.0 (2016-05-02)

Commit 3fee0
Feature
Support for data fields of Tenable Nessus.

Versión 9.1.1 (2016-04-29)

Commit 756ea
Optimization
Optimize redirects of RSS feed requests.

Versión 9.1.0 (2016-04-27)

Commit 8ab5b
Feature
Some data points are now shown in bubbles.
Commit 939cf
Optimization
Introduced a new site footer.

Versión 9.0.0 (2016-04-14)

Commit b3559
Optimization
Complete rewrite of the search engine to provide better matches and optimized performance.

Versión 8.1.2 (2016-04-06)

Commit 3ce21
Optimization
Optimization of HTML code to make pages smaller and faster to download and render.

Versión 8.1.1 (2016-04-04)

Commit 3b609
Bugfix
Fixed a bug or slow indexes which improved the performance of vulnerability display a lot.

Versión 8.1.0 (2016-04-01)

Commit 7bc0a
Feature
Introduction of new summaries and descriptions with more data enrichment.
Commit 56864
Optimization
Performance optimization.

Versión 8.0.0 (2016-03-14)

Commit 5e4e5
Feature
Introducing Chart.js to generate dynamic charts.

Versión 7.1.3 (2016-03-11)

Commit a0b92
Optimization
Establish VulDB as independent service to gain more flexibility.

Versión 7.1.2 (2016-02-23)

Commit 76b37
Optimization
Migration to new hardware.

Versión 7.1.1 (2016-02-17)

Commit 07bfb
Optimization
Renaming the Twitter handle from scipvulbot to "vuldb"https://twitter.com/vuldb.

Versión 7.1.0 (2016-01-19)

Commit 55bf1
Feature
Enhancing statistical overview to provide previews and forecasts based in historical data.
Commit 72424
Feature
Creating new text for different pages and sub-pages.

Versión 7.0.5 (2015-12-01)

Commit ea951
Optimization

Customer request
Adding caching modules to improve site performance. Caching is possible per site and file.

Versión 7.0.4 (2015-11-20)

Commit 58def
Optimization

Customer request
Increasing update frequency of existing entries.

Versión 7.0.3 (2015-08-19)

Commit 2ddb7
Bugfix
Corrected the listing of multiple authors of a vulnerability.

Versión 7.0.2 (2015-08-07)

Commit 3b6e7
Optimization
More performance optimization of database queries.

Versión 7.0.1 (2015-08-03)

Commit b1554
Optimization
Performance optimization of database queries.

Versión 7.0.0 (2015-07-10)

Commit 243a7
Feature
Redesign of modular frontpage with the introduction of Top 5 lists.

Versión 6.31.0 (2015-07-07)

Commit 44e99
Feature
Adding Qualys data to vulnerability entries.
Commit fe3d0
Feature
Adding SecurityCenter data to vulnerability entries.

Versión 6.30.0 (2015-03-09)

Commit e19c1
Feature
Introduction of new queue for vulnerability processing by mod team.

Versión 6.29.3 (2015-02-25)

Commit 8695f
Optimization
Optimization of all X-Force data import and display.

Versión 6.29.2 (2015-02-03)

Commit 3453e
Optimization
Optimizaton of summaries and descriptions of vulnerability entries.

Versión 6.29.1 (2015-01-08)

Commit 7ac76
Optimization
Optimization of version descriptions of vulnerability entries.

Versión 6.29.0 (2014-06-24)

Commit 0b232
Feature

Customer request
Approaching backlog of old entries before 2003 with vulnerabilities ranging back to 1988. More information.

Versión 6.28.0 (2014-05-26)

Commit 0f72a
Feature
Introduction of the "see also" hint which lists entries with are connected or similar.

Versión 6.27.0 (2014-04-17)

Commit 35f6f
Feature
Adding a field to declare the date of the introduction of a vulnerability.

Versión 6.26.1 (2014-03-27)

Commit 3efc3
Optimization
Optimization of queuing of new vulnerabilities to better prioritize processing.

Versión 6.26.0 (2014-03-20)

Commit 7caf2
Feature

Customer request
Added language support for Polish.

Versión 6.25.12 (2014-03-14)

Commit bc799
Optimization
Database index optimization.

Versión 6.25.11 (2014-03-07)

Commit d0dda
Optimization
Optimizing collision detection during the processing of new entries.

Versión 6.25.10 (2014-02-10)

Commit ce076
Optimization
Optimizing summaries regarding sources of vulnerability entries.

Versión 6.25.9 (2014-01-29)

Commit 03d37
Optimization
Added helper for vulnerability moderation team to determine arguments of attacks faster and more reliable.

Versión 6.25.8 (2014-01-28)

Commit 53a64
Optimization
Optimizing summaries regarding code samples.

Versión 6.25.7 (2014-01-23)

Commit 61b0d
Optimization
Optimizing helper for vulnerability moderation team to complete new and existing entries with additional data. This increases data quality drastically.

Versión 6.25.6 (2014-01-14)

Commit a17f4
Bugfix
Fixed a bug where sometimes summaries and descriptions did contain spaces twice instead of once. This was just a problem in the HTML source code and not on the rendered web site.

Versión 6.25.5 (2014-01-09)

Commit 1cd31
Optimization
Added helper for vulnerability moderation team to determine keywords which shall be used within the title of a vulnerability entry.

Versión 6.25.4 (2013-12-19)

Commit 12a4f
Optimization
Optimizing the autocomplete feature to update new entries with historical data.

Versión 6.25.3 (2013-11-06)

Commit 1434c
Optimization
Optimizing the pre-parser to handle import of new vulnerability entries.

Versión 6.25.2 (2013-10-22)

Commit a52cf
Optimization
Changing the algorithm to calculate the current threat level.

Versión 6.25.1 (2013-10-21)

Commit 921d7
Optimization
Changing the algorithm to calculate the risk rating of vulnerability entries.

Versión 6.25.0 (2013-10-18)

Commit b4283
Feature
Adding the support for OpenVAS data.

Versión 6.24.0 (2013-10-17)

Commit 01303
Feature
Introducing the threat level to show an indicator for the current vulnerability landscape.

Versión 6.23.0 (2013-10-03)

Commit e8e8f
Feature
Adding the possibility to add a custom word to the title to provide more details on first sight.

Versión 6.22.0 (2013-10-01)

Commit f8c1e
Feature
Establishing a background updater which handles entries which need to be updated without interfering with the manual work of the moderation team.
Commit 5abb3
Optimization
Enhancement of the review procedure of CVE entries pushed by MITRE to improve processing and quality.

Versión 6.21.0 (2013-09-13)

Commit 9f09f
Feature
Collaboration with vFeed to exchange and enrich vulnerability data. More information.

Versión 6.20.1 (2013-09-12)

Commit 088ac
Optimization
Completing all existing entries with Secunia data.

Versión 6.20.0 (2013-09-11)

Commit 2b409
Feature
Introducing risk maps to provide easy comparability between risk ratings of different sources.

Versión 6.19.0 (2013-09-10)

Commit 8966c
Feature
Introducing support for Secunia data as a source.
Commit 8966c
Feature
Introducing support for IBM X-Force data as a source.

Versión 6.18.0 (2013-08-23)

Commit 3881d
Feature
Added the 10.000th entry about Google Chrome to the database. Check the stats for more details. Congratulations! More information.

Versión 6.17.0 (2013-08-12)

Commit d8b39
Feature

Customer request
Added CVSSv2 temporal support. More information.

Versión 6.16.0 (2013-08-09)

Commit 40986
Feature
Adding support for a wide variety of new data fields.

Versión 6.15.2 (2013-07-05)

Commit 4dffe
Optimization
Enhancement of the review procedure of Nessus entries.

Versión 6.15.1 (2013-06-28)

Commit 4b14b
Optimization
Optimizing the plausability checks during vulnerability moderation to prevent contradicting and wrong data.

Versión 6.15.0 (2013-06-19)

Commit 0b42c
Feature
Added support for CPE to better identification of products.

Versión 6.14.1 (2013-06-11)

Commit 0b61c
Optimization
Updating large quantities of vulnerabilities is now improved thanks to incremental updates.

Versión 6.14.0 (2013-06-03)

Commit 207db
Feature
Added support for screenshots per entries to illustrate attacks and countermeasures. More information.
Commit 207db
Feature
Added support to embed external videos per entries to illustrate attacks and countermeasures. Videos can be hosted at YouTube and Vimeo. More information.

Versión 6.13.0 (2013-05-31)

Commit 22b2b
Feature
Added the capability to add quotes from advisories to enrich entries.
Commit 22b2b
Feature
Added the capability to add links to videos for a vulnerability.

Versión 6.12.0 (2013-04-29)

Commit 57d8e
Feature
Introduction of CVSS maps. More information.

Versión 6.11.0 (2013-04-11)

Commit 6a9d2
Feature
Added the capability to list multiple different products in an affected list. This is done additionally to the main product that is affected by a vulnerability.

Versión 6.10.2 (2013-04-04)

Commit 239ac
Optimization
Enhanced input validation mechanism during vulnerability management to prevent mistakes regarding vendor/product definitions.

Versión 6.10.1 (2013-03-28)

Commit 497c0
Optimization
Optimization of logging and tracking of queued items processed by the moderation team.

Versión 6.10.0 (2013-03-19)

Commit c46f6
Feature
Added input validation mechanisms during vulnerability management.
Commit bc987
Optimization
Optimized input validation mechanisms during vulnerability management.

Versión 6.9.1 (2013-01-09)

Commit b0410
Bugfix
Fixed an issue in the database. This did only affect moderation of vulnerabilities and was not reflected on the user-side of the service.

Versión 6.9.0 (2012-12-21)

Commit 79a9b
Feature
Added a feature to normalize terms between different vulnerability entries.

Versión 6.8.1 (2012-11-26)

Commit d0a20
Optimization
Prepared the support for Milw0rm data for entries with an ID up to 50000.

Versión 6.8.0 (2012-10-31)

Commit d83e7
Feature

Customer request
Added language support for French. More information.

Versión 6.7.0 (2012-10-15)

Commit 5a191
Feature

Customer request
Added language support for English. More information.

Versión 6.6.0 (2012-10-01)

Commit 61e91
Feature

Customer request
Added language support for Spanish. More information.
Commit 58566
Bugfix
Fixed an upload problem of new entries into the database.

Versión 6.5.0 (2012-09-24)

Commit a75e7
Feature

Customer request
Added language support for Swedish. More information.

Versión 6.4.0 (2012-07-04)

Commit a681e
Feature
Migrating all available data from NASLDB.

Versión 6.3.0 (2012-06-18)

Commit 98ea9
Feature

Customer request
Added language support for Italian. More information.
Commit 7b83d
Bugfix
Fixed a problem in the German module responsible to handle umlauts.

Versión 6.2.2 (2012-06-05)

Commit 895ea
Optimization
Optimizing the autocomplete feature to update new entries with historical data.

Versión 6.2.1 (2012-04-10)

Commit 3a3bb
Bugfix
Fixed a problem during the display of archive data.

Versión 6.2.0 (2012-03-13)

Commit e00e9
Feature
Added support for better linking to external sources.

Versión 6.1.1 (2012-03-09)

Commit d36ae
Optimization
Added new categories/keywords in the existing RSS feeds.

Versión 6.1.0 (2012-03-08)

Commit c17b6
Feature
Added the calculation of the exposure time which measures the time of the disclosure and the mitigation possibilities of a vulnerability.
Commit 23aa8
Optimization
Reviewed all available data of OSVDB.

Versión 6.0.0 (2012-03-06)

Commit 934a4
Optimization
Optimization of summaries and descriptions.
Commit 3484c
Feature
Added support to show images of vendors/products.
Commit 3484c
Feature
Added support for Google dorks to find issues very quickly.

Versión 5.2.2 (2012-03-05)

Commit 90cf5
Optimization
Performance optimization.

Versión 5.2.1 (2012-03-02)

Commit e27ac
Optimization
Performance optimization.

Versión 5.2.0 (2012-02-15)

Commit d6183
Feature
Added web import feature for vulnerability moderators to handle new entries based on web ressources.

Versión 5.1.0 (2012-01-06)

Commit 2e4ed
Feature
Added single import feature for vulnerability moderators to handle single entries outside the regular queueing.

Versión 5.0.0 (2011-02-22)

Commit 04086
Feature
Establishing new database backend with much more possibilities.

Versión 4.10.2 (2010-12-01)

Commit 8b4df
Optimization
Move to more powerful hardware due to increase in access.

Versión 4.10.1 (2010-07-30)

Commit 787d2
Optimization
Backporting all information for reference maps of existing entries.

Versión 4.10.0 (2010-06-10)

Commit 57677
Feature
Adding Alert Info on web site to inform visitors about latest critical issue.
Commit 80bfa
Feature
Delivering ads for non-paying and unauthenticated users.
Commit acc6f
Optimization
Optimizing database structure for more flexibility and performance.

Versión 4.9.0 (2010-03-08)

Commit dbea0
Feature
Introduction of Reference Maps for better linking of vulnerabilities and sources. More information.

Versión 4.8.1 (2010-02-10)

Commit e7405
Optimization
Make more statistical data available with better flexibility.

Versión 4.8.0 (2010-02-08)

Commit 47351
Feature
Adding the alert info on top of the site to show the most recent vulnerability with the highest emergency rating.

Versión 4.7.2 (2020-02-05)

Commit 1a52b
Optimization
Improvement of VulDB alert system.

Versión 4.7.1 (2010-02-02)

Commit aa53e
Optimization
Improved summary details per entries. More information.
Commit bd3fd
Optimization
Performance optimization for all RSS feeds. More information.

Versión 4.7.0 (2011-01-11)

Commit 90de3
Feature

Customer request
Added VulDB Alert to inform customers about issues applicable for them.

Versión 4.6.0 (2009-12-16)

Commit 9b5dc
Feature
Partnership with OSVDB to cross-link vulnerability entries. More information.

Versión 4.5.0 (2009-10-27)

Commit 3dd4e
Feature
Introduction of statistical overview. More information.
Commit 3dd4e
Feature
Introduction of product overview. More information.

Versión 4.4.0 (2009-09-03)

Commit 399e8
Feature
Start of the Twitter bot vuldb (formerly known as scipvulbot). More information.

Versión 4.3.0 (2009-08-25)

Commit 61ad7
Feature
Completing existing entries with mast actual data. This includes but is not limited to CVE, Secunia, SecurityTracker, vendor, and confirmation details. More information.

Versión 4.2.0 (2009-08-20)

Commit 411d3
Feature
Adding new data fields to enrich vulnerability entries.

Versión 4.1.0 (2009-08-01)

Commit d21a3
Feature
Introduction of recurring update processes.

Versión 4.0.1 (2009-06-26)

Commit b47f5
Optimization
Optimization of existing RSS feeds by adding summaries and categories. More information.

Versión 4.0.0 (2009-06-23)

Commit c26c1
Optimization
Complete re-write of the site in PHP. More information.

Versión 3.5.0 (2006-07-01)

Commit 42fff
Feature
Emergency-SMS notification service becomes available in Germany. More information.

Versión 3.4.0 (2004-05-19)

Commit a1c50
Feature
Adding a lot of new data fields to enrich vulnerability entries. More information.

Versión 3.3.0 (2004-01-01)

Commit a2ec5
Feature
Introduction of Emergency-SMS notification service.

Versión 3.2.0 (2003-12-19)

Commit 37bc3
Feature
Introduction of RSS feed. More information.

Versión 3.1.0 (2003-11-18)

Commit 8a989
Feature
Initial release of scip_Alerter for desktop notifications. More information.

Versión 3.0.0 (2003-03-01)

Commit 94f12
Feature
Bugbase is completely re-written in Perl and uses a dedicated backend for vulnerability moderation to gain more flexibility.
Commit 94f12
Optimization
Bugbase is re-branded as scip VulnDB and hosted on www.scip.ch.

Versión 2.0.0 (2002-09-01)

Commit 51e87
Optimization
Changed from static web site to dynamic database (with the kind support of DukeCS).

Versión 1.0.0 (1997-01-01)

Commit 33e3b
Feature
Bugbase project launch by Marc Ruef.

Might our Artificial Intelligence support you?

Check our Alexa App!