变更日志

版本 13.26.2 (06/25/2021)

  • [Optimization] The Content-Type of all API responses is changed to application/json; charset=utf-8. This is not a change in the API itself which is why the version number of the API endpoints is not incremented. (this was a customer request)

版本 13.26.1 (06/24/2021)

  • [Optimization] The official vulnerability API endpoint is located at /?api and will redirect faulty URLs and GET parameters. Microsoft Power Apps did not respect this URL structure and changed the query string to a parameter tuple with an empty value. Our API endpoint redirected to the correct URL but Power Apps is not capable of following such HTTP redirects. This issue got fixed as Power Apps is now allowed to access the API endpoint even though the request URL format is not entirely correct. (this was a customer request)

版本 13.26.0 (06/18/2021)

  • [Feature] In API 2.22/3.29 the field vulnerability_attck was made available. It contains the identifier of the associated MITRE ATT&CK technique. (this was a customer request)

版本 13.25.3 (06/16/2021)

  • [Optimization] Performance optimization during stress (e.g. many users, DDoS attacks).

  • [Optimization] Changed the algorithm to generate the category values local and remote in the RSS feeds. Also added the value partial for local if the attack vector is physical.

版本 13.25.2 (06/15/2021)

  • [Optimization] Dedicated approval and handling of permissions to use extended CTI features.

  • [Optimization] The user profile shows details about the purchased CTI license.

  • [Optimization] Better performance of generation of user menu for authenticated users.

版本 13.25.1 (06/14/2021)

  • [Optimization] More accurate timing information about new IoC (Indicator of Compromise) assigned to an APT actor.

版本 13.25.0 (06/11/2021)

  • [Feature] New IoC (Indicator of Compromise) assigned to an APT actor are shown in the community activity stream on the frontpage.

版本 13.24.1 (06/09/2021)

  • [Optimization] Optimized abuse detection of search queries for authenticated users.

版本 13.24.0 (06/08/2021)

版本 13.23.0 (06/07/2021)

  • [Feature] Dedicated access to CTI features in the item threat of the main menu.

  • [Feature] Access to APT actor information to show activities, interest distribution, indicators of compromise, and external references. The analysis is based on unique activity data ranging back to 2016. (this was a customer request)

  • [Feature] Access to country-specific information to show activities and interest distribution.

版本 13.22.1 (06/04/2021)

  • [Optimization] Timelines indicating activities show the so called activity index instead of the generic entries label.

  • [Optimization] Bar charts showing exploit prives use exploit instead of the generic entries label.

版本 13.22.0 (05/31/2021)

版本 13.21.0 (05/26/2021)

  • [Feature] Language support for Japanese (jp). This includes basic parts of the web site and vulnerability details. (this was a customer request)

版本 13.20.4 (05/18/2021)

  • [Optimization] The event of web code improvement shown in the community stream links to the changelog.

  • [Optimization] In API 1.9/2.21/3.28 requests by the official Splunk app with a license of less than 10 API credits will throw an 403 Splunk app license expired error to prevent stressing the service with expired Splunk installations.

版本 13.20.3 (05/12/2021)

  • [Optimization] Streamlined entry identifier wording on community activity stream on the frontpage.

版本 13.20.2 (05/04/2021)

  • [Optimization] The changelog does contain the version number of the service.

  • [Optimization] All major releases are shown in the changelog with a star.

版本 13.20.1 (05/02/2021)

  • [Optimization] Community activities shown on the frontpage do refer to entries with their corresponding VDB ID to increase readability.

版本 13.20.0 (04/29/2021)

  • [Feature] Frontpage does now show the latest changelog entries of the current day.

  • [Optimization] Vulnerability entries do now always contain links to available upgrades and patches in the Countermeasure section. (this was a customer request)

版本 13.19.3 (04/28/2021)

  • [Optimization] Performance optimization of the Threat Intelligence chart on the frontpage.

  • [Bugfix] Fixed an issue where count and overview of user commits were not updated. Reported by user misc (this was a customer request)

版本 13.19.2 (04/26/2021)

  • [Optimization] Hardware upgrade for better memory and processing handling.

  • [Optimization] In API 3.27 the values of numeric request types is verified and if not acceptable, a 400 Bad request error message is shown.

版本 13.19.1 (04/24/2021)

  • [Optimization] Optimized load balancing, limiter, and DDoS mitigation to provide more stability for legitimate users.

版本 13.19.0 (04/22/2021)

  • [Feature] Submitted items are reviewed by an automated pre-parser to define a priority for processing by the moderation team. This increases priority for most important items and therefore improves processing speed. (this was a customer request)

版本 13.18.0 (04/20/2021)

  • [Feature] Language support for Chinese simplified (zh-Hans). This includes basic parts of the web site and vulnerability details. (this was a customer request)

版本 13.17.1 (04/16/2021)

  • [Optimization] Code optimization of CTI map generation for faster processing with less memory requirements.

版本 13.17.0 (04/15/2021)

  • [Feature] Description of CTI trigger possibilities and threshold handling to create events and reports. (this was a customer request)

  • [Optimization] Footer does now refer to your specific copyright and license depending whether there is a commercial, enterprise, or reseller license established.

版本 13.16.0 (04/12/2021)

  • [Feature] Some users mistake their mail address as legitimate username to login. In this case a warning message informs the user about the mistake. (this was a customer request)

版本 13.15.3 (04/08/2021)

  • [Optimization] Performance optimization for CTI country analysis (closed beta invite only at the moment). Time range analysis is now incremental which makes report generation much faster (especially for larger ranges).

版本 13.15.2 (03/31/2021)

  • [Optimization] All listings in the personal profile do contain timestamps to make identification of single items much easier.

  • [Optimization] Completed some of the missing translations for French, Italian, Spanish, Polish, and Swedish.

  • [Optimization] Improved the handling of time format regarding country-specific definitions. The language en will show A.M. and P.M. only if the browser is also set to en-us. Otherwise the 24 hour format is used. If the language is set to fr and the browser announces fr-fr there will be the French format 12h34. The 24 hour format is also used as default for all languages without a specific definition.

版本 13.15.1 (03/30/2021)

  • [Bugfix] Fixed a bug where some long product names, product listings and titles did not show the product name in its entirety.

  • [Optimization] In API 3.26 fixed an issue where queries for advisory_date_start, entry_timestamp_create_start, entry_timestamp_change_start, and entry_timestamp_all_start did not work properly if the request value had a trailing whitespace.

版本 13.15.0 (03/29/2021)

  • [Feature] The personal API history does show the execution time for a request to help optimize queries. The column is shown as seconds and sortable.

  • [Feature] Added planned features in a roadmap to announce upcoming functionality. The items shown are just suggestions and might change regarding implementation and deployment. (this was a customer request)

版本 13.14.3 (03/28/2021)

  • [Optimization] Better description of update handling, especially prioritization of new data for existing entries and update requests by customers. (this was a customer request)

  • [Optimization] Optimized the description of different commit moderation approaches. The actions for handling spam and profanity are explained in detail.

版本 13.14.2 (03/26/2021)

  • [Bugfix] In API 2.20/3.25 the list of multiple items in software_affectedlist and software_notaffectedlist do trim trailing whitespaces correctly.

版本 13.14.1 (03/25/2021)

  • [Optimization] Added a new community rank Guru which requires 5000 points to be reached. Therefore, Grand Master is not the highest rank anymore.

版本 13.14.0 (03/24/2021)

  • [Feature] Introduced API 3.24 with the new request type entry_timestamp_all_start which combines new items from entry_timestamp_create_start and updated items from entry_timestamp_change_start in a single stream. (this was a customer request)

版本 13.13.1 (03/20/2021)

  • [Optimization] Optimized speed and memory consumption of queries based on LIKE statements in search queries.

版本 13.13.0 (03/17/2021)

  • [Feature] Documentation of the different levels used in the field exploit_exploitability shown on multiple listings on the web site. (this was a customer request)

版本 13.12.0 (03/10/2021)

  • [Feature] Made internal changelog public to provide full transparency for our customers. Entries earlier than 2020 just show milestones and not detailed changes. (this was a customer request)

  • [Feature] Added link to changelog under support in main menu and in the footer of the page.

  • [Optimization] Updated internal quality guidance for CVSS fields during creation of new entries based on official Microsoft disclosures.

版本 13.11.3 (03/08/2021)

  • [Optimization] Updated internal quality requirements for advisory_person_name and advisory_person_nickname fields to prevent inaccurate information during daily update procedure.

版本 13.11.2 (03/04/2021)

  • [Optimization] Optimized limiter to prohibit crawling of view elements by non-commercial users.

  • [Optimization] Limiter uses better geolocation data to prevent malicious users from changing IP addresses to slow down detection of abuse.

版本 13.11.1 (03/03/2021)

  • [Bugfix] Fixed a rare German translation issue in a specific sentence of some vulnerability summaries.

版本 13.11.0 (03/01/2021)

  • [Feature] Prepared language database for upcoming translations.

  • [Optimization] Optimized language database for better performance.

版本 13.10.0 (02/28/2021)

  • [Feature] CTI Analysis (closed-beta only) supports search strings for technology-specific research.

版本 13.9.0 (02/22/2021)

版本 13.8.0 (02/04/2021)

  • [Feature] Added load balancing features to handle performance peaks much better.

  • [Feature] Enabled priority module to provide high-availability for enterprise customers.

版本 13.7.1 (02/03/2021)

  • [Optimization] Optimized normalize module to improve quality assurance of vulnerability data management.

版本 13.7.0 (02/01/2021)

  • [Feature] Initiated preparation for port of web services to PHP8. First polyfill functions tested.

版本 13.6.1 (01/17/2021)

  • [Bugfix] Fixed a bug where some new user submissions were shown as rejected even though they were still not processsed yet. This issue was reported by user misc.

版本 13.6.0 (01/16/2021)

  • [Feature] Start of internal testing for CTI attribution module to identify APT group activities as such. Used by CTI team to create CTI alerts and infos for paying customers.

版本 13.5.3 (01/09/2021)

  • [Optimization] Changed entry_timestamp_delta behavior from 7200 to 120 to keep commit grouping much smaller. Entries updated within a short period of time will pushed into the update stream to provide the most actual data to API users. (this was a customer request)

版本 13.5.2 (01/04/2021)

  • [Optimization] Performance improvement of search engine. Early dissection will speed up some specific search requests.

  • [Optimization] Performance improvement of monoblock engine. Compilation of entries is a bit faster under certain circumstances.

版本 13.4.0 (12/08/2020)

  • [Feature] In API 3.23 added request type cursorinit to determine ideal initial cursor position for ongoing vulnerability stream (e.g. Splunk).

版本 13.3.0 (12/04/2020)

  • [Feature] Introduced information regarding ATT&CK. The fields are currently auto-generated and not part of the monoblock.

  • [Feature] In API 2.19/3.22 added field source_cve_cna which contains a string of the CVE Numbering Authority that assigned the CVE.

  • [Bugfix] Corrected a display bug for tooltips of CVSS fields on certain overview pages.

版本 13.2.1 (12/03/2020)

  • [Optimization] Optimized signup flood protection to prevent malicious users from auto-generating community accounts.

版本 13.2.0 (11/26/2020)

  • [Feature] Added new import feature for vulnerability moderators to handle custom entries and large batches of submissions.

  • [Feature] The differences in a diff view are highlighted by color to provide better visibility.

版本 13.1.1 (11/06/2020)

  • [Optimization] Migration to new hardware.

版本 13.1.0 (11/02/2020)

  • [Feature] Paying customers do now see a summary on top of every vulnerability entry to identify the most important aspects of the vulnerability.

版本 13.0.1 (10/16/2020)

  • [Optimization] Optimized some indexes within the database to improve performance.

版本 13.0.0 (10/09/2020) ⭐

  • [Feature] Introduced new monoblock structure to provide more possibilities like commits, commit histories, etc.

版本 12.24.0 (09/10/2020)

  • [Feature] The live symbol is pulsating.

  • [Optimization] The CSS code for the custom worldmap is deleted to stramline the CSS file.

版本 12.23.1 (08/10/2020)

  • [Optimization] Optimization of browser rendering speed by adding font-display: swap to the CSS style sheet.

版本 12.23.0 (05/16/2020)

  • [Feature] Added an optimization banner to inform users about upcoming changes and features.

版本 12.22.0 (05/13/2020)

  • [Feature] New horizontal table style to make some upcoming views better readable.

版本 12.21.4 (05/01/2020)

  • [Optimization] Upgrading to an extended server cluster for better performance.

版本 12.21.3 (04/17/2020)

  • [Bugfix] In API 3.21 the field entry_timestamp_change is now always present even if the entry was just created and never updated yet. In this case it will contain the same value like entry_timestamp_create. User of the official VulDB Splunk App are advised to update to the latest release.

版本 12.21.2 (01/10/2020)

  • [Optimization] Added validation styles for numbers, dates, emails, and urls for forms. These detect missing or wrong data before submitting a form.

版本 12.21.1 (11/19/2019)

  • [Optimization] Decreased the font-size of labes from 90% to 75% for better readability.

  • [Optimization] Improved style and layout of tooltips for better readability.

版本 12.21.0 (11/09/2019)

  • [Feature] Added logos of vendors/products in entries if available.

  • [Optimization] Stramlined CSS style sheet regarding mini buttons.

版本 12.20.0 (11/08/2019)

  • [Feature] Added tooltips for easier access to more information.

  • [Optimization] Added fade effect for mini buttons for a better user experience.

版本 12.19.1 (11/06/2019)

  • [Optimization] Stramlined box elements and columns.

版本 12.19.0 (10/31/2019)

  • [Feature] In API 3.20 added field vulnerability_name which contains a string or array a popular names of the vulnerability (e.g. Shellshock, Poodle). (this was a customer request)

版本 12.18.0 (09/13/2019)

  • [Feature] In API 3.19 added field family entry_details_* which contain entry_details_affected, entry_details_vulnerability, entry_details_impact, entry_details_exploit, entry_details_countermeasures, and entry_details_sources. (this was a customer request)

版本 12.17.0 (08/31/2019)

  • [Feature] In API 3.18 added field entry_replaces to display duplicates which have been replaced by this entry.

版本 12.16.0 (08/26/2019)

  • [Feature] In API 3.17 added fields vulnerability_cvss3_basevector_vuldb and vulnerability_cvss3_tempvector_vuldb to display full VulDB CVSSv3 vectors easily.

版本 12.15.0 (08/22/2019)

  • [Feature] Added experimental world map to highlight CTI activities.

  • [Optimization] Improved the layout of checkboxes on web forms.

版本 12.14.0 (07/01/2019)

  • [Feature] Introduction of software type categories available in the field software_type. (this was a customer request)

版本 12.13.2 (06/04/2019)

  • [Bugfix] In API 3.16 fixed value of field advisory_identifier, disabled safeguard mechanism to prevent inconsistency in result count.

版本 12.13.1 (06/01/2019)

  • [Optimization] Updated the Data Privacy Notice to clarifying wording and added details about payment processing.

版本 12.13.0 (05/24/2019)

  • [Feature] Added loading bar on top of the page to indicate the loading of large pages.

版本 12.12.0 (05/17/2019)

  • [Feature] In API 3.15 added fields software_website_vendor and software_website_product to the output.

版本 12.11.0 (05/08/2019)

  • [Feature] In API 3.14 requesting dedicated CVSS fields supports the official response format (e.g. vulnerability_cvss3_vuldb_basescore) and the legacy format (e.g. vulnerability_cvss3_basescore_vuldb). The legacy format will be dropped in a future major release of the API.

版本 12.10.1 (04/24/2019)

  • [Optimization] Improved the layout of the search menu item for better accessibility.

  • [Optimization] The status boxes of live views are now pulsating if there is currently some activity.

版本 12.10.0 (04/17/2019)

  • [Feature] In API 1.8/2.18/3.13 added field software_cpe23 which introduces full CPE 2.3 support whereas software_cpe is still providing CPE 2.2 data. (this was a customer request)

版本 12.9.0 (04/15/2019)

  • [Feature] Added a detailed clendar view for years an months.

  • [Optimization] Streamlined the row behavior.

版本 12.8.2 (04/10/2019)

  • [Optimization] Hovering a clickable symbol in an overview will now be indicated by the cursor as pointer.

  • [Optimization] Improved the layout of buttons inside text boxes (e.g. searches).

版本 12.8.1 (04/01/2019)

  • [Optimization] Centered the purchase table for better accessibility.

版本 12.8.0 (03/29/2019)

  • [Feature] Added the possibility to purchase new licenses online. (this was a customer request)

版本 12.7.0 (03/21/2019)

  • [Feature] Added the possibility to search within the main menu.

版本 12.6.0 (03/15/2019)

  • [Feature] Added multiple levels to the main menu to provide better accessibility to the variety of features. (this was a customer request)

  • [Feature] Added the possibility for buttons within textboxes (e.g. searches).

版本 12.5.0 (03/08/2019)

  • [Feature] Vulnerability entries do now show the exploit prices with a graphical element.

  • [Optimization] Improved the display of symbols in overviews.

版本 12.4.0 (03/04/2019)

  • [Feature] In API 1.7/2.17/3.12 added fields entry_locked_status and entry_locked_reason to inform about entries undergoing update and review processes (they might change soon).

版本 12.3.0 (03/01/2019)

  • [Feature] Introduction of the C3BM Index (CVSSv3 Base Meta Index) based on CVSS data of multiple sources.

版本 12.2.0 (02/28/2019)

  • [Feature] Large tables might be shown with a striped layout to improve readability.

  • [Optimization] Improved the layout of buttons in the user submenu.

版本 12.1.0 (02/25/2019)

  • [Feature] Symbols in overviews are clickable to provide a drilldown feature. This is true for CVSS, exploit prices, exploitability, and countermeasures. (this was a customer request)

  • [Optimization] Header text is now a graphical element.

版本 12.0.4 (02/23/2019)

  • [Optimization] Slightly changed the colorization of remedation and exploitability levels.

版本 12.0.3 (02/22/2019)

  • [Optimization] Changed the pointer behavior of certain table headers from grab to regular pointer.

版本 12.0.2 (02/21/2019)

  • [Optimization] Streamlined user menu buttons.

  • [Optimization] Streamlined exploitability fields.

版本 12.0.1 (02/20/2019)

  • [Optimization] In API 1.6/2.16/3.11 improved speed, reliability and accuracy of updates queries.

  • [Optimization] Improved the width behavior of user menu buttons.

  • [Optimization] Links in overviews are clickable within the whole cell and not just on the text itself.

版本 12.0.0 (02/18/2019) ⭐

  • [Feature] New overviews introduced with a lot of information items. (this was a customer request)

  • [Feature] Added support for dynamic behavior for long tables with more than six columns.

  • [Optimization] Streamlined the behavior of content and article.

  • [Optimization] Streamlined the behavior of tables.

  • [Optimization] Streamlined the behavior of buttons.

版本 11.26.0 (02/15/2019)

  • [Feature] Added the posibility to fade-in some elements for a better user experience.

  • [Optimization] Improved the width behavior of user menu buttons.

版本 11.25.0 (02/08/2019)

  • [Feature] Added buzzboxes to show statistical data about the project.

  • [Optimization] Optimized the margin behavior of columns.

版本 11.24.0 (02/06/2019)

  • [Feature] In API 3.10 added request parameter offset to set a starting point for results (pagination). (this was a customer request)

版本 11.23.1 (02/01/2019)

  • [Optimization] Reached the 10.000th community user. Congratulations!

版本 11.23.0 (01/18/2019)

  • [Feature] In API 3.9 added field software_type.

版本 11.22.0 (01/11/2019)

  • [Feature] In API 3.8 VulDB CVSSv3 scores use AI-driven autocomplete based on historical data and additional sources. The field vulnerability_cvss3_vuldb_confidence indicates the confidence of the vectors. (this was a customer request)

版本 11.21.1 (01/08/2019)

  • [Bugfix] In API 1.5/2.15/3.7 field software_component is not returning multiple fields anymore to prevent parsing errors.

版本 11.21.0 (01/01/2019)

  • [Feature] Enabling real-time views of recent and updated entries. You are now able to see the moderation time at work.

版本 11.20.0 (12/13/2018)

  • [Feature] In API 1.4/2.14/3.6 requesting details without unlocked archive access will warn in field entry_warning about limitation. (this was a customer request)

版本 11.19.0 (10/01/2018)

  • [Feature] Launch of Video Tutorial Series on YouTube to introduce new users to the capabilities of the service. (this was a customer request)

版本 11.18.1 (09/20/2018)

  • [Optimization] Changed the cursor behavior for votes from copy to default.

  • [Optimization] Changed the cursor behavior of ribbons to default.

版本 11.18.0 (09/18/2018)

  • [Feature] Added custom ribbons to popup with interesting details if needed.

  • [Optimization] Improved the behavior of items which have a fade-in effect.

版本 11.17.0 (09/01/2018)

  • [Feature] Release of official Splunk App which is available on Splunkbase for free. Commercial or enterprise license is recommended. (this was a customer request)

版本 11.16.0 (08/31/2018)

  • [Feature] Introduction of CPE lists in entry views to indicate the affected products. (this was a customer request)

版本 11.15.0 (08/06/2018)

  • [Feature] In API 3.5 support for the queries advisory_date_start, entry_timestamp_create_start, entry_timestamp_change_start.

  • [Optimization] Disabled the gradients in symbols. (this was a customer request)

版本 11.14.4 (08/04/2018)

  • [Optimization] Fixed an issue with the visibility of long date symbols.

版本 11.14.3 (08/03/2018)

  • [Optimization] Improvement of gradient in symbols.

  • [Optimization] Adding support for other font families in symbols.

版本 11.14.2 (08/02/2018)

  • [Optimization] Introduction of gradients in symbols.

版本 11.14.1 (08/01/2018)

  • [Optimization] Introduction of antialiasing of fonts for better readability on high-resolution displays.

版本 11.14.0 (07/31/2018)

  • [Feature] Added support for stream symbols shown on overviews.

版本 11.13.1 (07/22/2018)

  • [Optimization] Improved the layout of mini buttons.

版本 11.13.0 (07/12/2018)

  • [Feature] Added dynamic layouts for tables to hide certain columns under specific conditions. This improves the mobile view a lot. (this was a customer request)

版本 11.12.1 (07/10/2018)

  • [Optimization] Optimized the margin of header elements.

版本 11.12.0 (07/06/2018)

  • [Feature] Introduction of the user menu for authenticated users. This menu shows additional details and provides access to more features.

版本 11.11.3 (07/05/2018)

  • [Optimization] A new table wrapper optimizes how tables are shown on different screen sizes.

版本 11.11.2 (07/04/2018)

  • [Optimization] Streamlining of cvss lists.

版本 11.11.1 (06/29/2018)

  • [Optimization] Streamlining of mini button for unlock announcements.

版本 11.11.0 (06/28/2018)

版本 11.10.1 (06/12/2018)

  • [Bugfix] In API 2.13/3.4 fixed enforcement of querylimit for details=0 queries. This issue was reported by user portal. (this was a customer request)

版本 11.10.0 (06/11/2018)

版本 11.9.4 (06/10/2018)

  • [Optimization] Streamlining of mini buttons.

版本 11.9.3 (06/08/2018)

  • [Optimization] Mini buttons do now animate on hover.

版本 11.9.2 (06/06/2018)

  • [Bugfix] In API 1.3/2.12/3.2 fixed wrong values in response_remaining (calculation was correct, value shown was wrong). This issue was reported by user portal. (this was a customer request)

版本 11.9.1 (06/04/2018)

  • [Bugfix] In API 1.2/2.11/3.1 fixed default sort order of recent and updates requests.

版本 11.9.0 (05/18/2018)

  • [Feature] Introduced API 3.0, which moved vulnerability_cpe to software_cpe. (this was a customer request)

版本 11.8.0 (05/15/2018)

  • [Feature] In API 2.10 added software_affectedlist and software_notaffectedlist.

  • [Feature] In API 2.10 added vulnerability_risk (also shown in non-detail responses).

版本 11.7.1 (05/14/2018)

  • [Optimization] In API 2.9 added detailed error messages regarding API key problems (missing, wrong, unknown, valid). (this was a customer request)

  • [Optimization] In API 2.9 enterprise customers have performance priority over free users.

版本 11.7.0 (05/08/2018)

  • [Feature] In API 2.8 the field entry_title does not show CVE anymore.

  • [Feature] In API 2.8 added fields vulnerability_timeline, countermeasure_reactiondays, countermeasure_0daydays, countermeasure_exposuredays, and countermeasure_exploitdelaydays.

版本 11.6.0 (05/07/2018)

  • [Feature] In API 2.7 added support for request type topsoftware. (this was a customer request)

版本 11.5.0 (05/01/2018)

版本 11.4.0 (04/01/2018)

版本 11.3.0 (03/22/2018)

  • [Feature] Working on a proof-of-concept to use Alexa as a gateway to work with vulnerability data. (this was a customer request)

版本 11.2.2 (02/17/2018)

  • [Optimization] Introduction of a container element to have more flexibility with layout positioning on the web frontend.

版本 11.2.1 (02/01/2018)

  • [Optimization] Introduction of a sub-title on the site title to better describe the service.

版本 11.2.0 (01/22/2018)

  • [Feature] Upgrade to API 2.0. Response contains three elements (request, response, result) instead just the results.

版本 11.1.1 (09/23/2017)

  • [Optimization] Improvement of the container margins to have a better layout.

版本 11.1.0 (09/16/2017)

版本 11.0.1 (06/02/2017)

版本 11.0.0 (06/01/2017) ⭐

  • [Feature] Introduction of dynamic graphs shown in different views.

版本 10.12.2 (05/19/2017)

版本 10.12.1 (05/16/2017)

  • [Bugfix] Fixed a display issue on the frontpage. Under certain circumstances new items were not shown as bold.

版本 10.12.0 (04/28/2017)

  • [Feature] Added dynamic charts in the results overview of web searches.

版本 10.11.0 (04/21/2017)

  • [Feature] Added dynamic charts of all kind of overview pages.

版本 10.10.0 (04/10/2017)

  • [Feature] Created an About page which explains the history of our vulnerability service.

版本 10.9.0 (04/01/2017)

  • [Feature] Added the 100.000th entry to the database. Check the stats for more details. Congratulations!

版本 10.8.0 (03/22/2017)

  • [Feature] Vulnerability entries flagged as false-positive do now highlight this fact on their pages (title and introduction). (this was a customer request)

版本 10.7.0 (03/21/2017)

  • [Feature] Introduced data for OVAL and IAVM. Completed all existing entries with appropriate data.

版本 10.6.0 (02/23/2017)

  • [Feature] Supporting CVSS scores from multiple sources (VulDB, vendor, researcher, NVD). (this was a customer request)

版本 10.5.1 (02/13/2017)

  • [Optimization] Optimized the indexing of the database to improve search performance.

版本 10.5.0 (02/01/2017)

版本 10.4.1 (01/20/2017)

  • [Optimization] Optimized performance by using specific features and configuration settings in PHP7.

版本 10.4.0 (01/18/2017)

  • [Feature] Added an advanced search on the web site to improve specific search capabilities.

版本 10.3.0 (01/01/2017)

  • [Feature] Start open beta of community edition.

版本 10.2.0 (12/20/2016)

  • [Feature] Introduced Bug of the Day on the front page. One of the more serious or interesting issues of the recent days is shown every day.

版本 10.1.1 (12/19/2016)

  • [Optimization] Redesign of the front-page with a slick layout and better data accessibility.

版本 10.1.0 (12/16/2016)

  • [Feature] Implemented a module to detect loss of data integrity on the service.

版本 10.0.0 (12/01/2016) ⭐

  • [Feature] Introduction of public API to provide vulnerability for automated processing. (this was a customer request)

版本 9.19.1 (11/08/2016)

  • [Optimization] Optimization of database table structures to gain more flexibility and performance.

版本 9.19.0 (11/07/2016)

  • [Feature] Implementation of Content Security Policy (CSP) to improve web security of the service.

版本 9.18.0 (11/02/2016)

  • [Feature] It is now possible to upvote comments for vulnerability entries. Upvoted comments are shown on top of the list.

版本 9.17.0 (11/01/2016)

  • [Feature] Start closed beta of community edition.

版本 9.16.0 (10/26/2016)

  • [Feature] Editing a section of a vulnerability will automatically jump to the correct section of the edit form.

版本 9.15.0 (10/25/2016)

  • [Feature] Existing vulnerability entries can now be edited immediately by members of the moderation team.

版本 9.14.0 (10/14/2016)

  • [Feature] Enhanced the existing cache module to allow caching of database queries and results.

版本 9.13.0 (10/11/2016)

  • [Feature] Every user account has now a profile.

  • [Feature] Registered users are able to tweak their own configuration of the service.

版本 9.12.0 (10/10/2016)

  • [Feature] Registered users are able to see history of vulnerability entries they have been viewing earlier.

版本 9.11.0 (10/07/2016)

  • [Feature] Registered users are able to gain community points with activities to get a higher ranking on the site.

版本 9.10.0 (10/06/2016)

版本 9.9.0 (10/05/2016)

  • [Feature] Users accessing ressources which require an authentication receive a proper error message.

版本 9.8.0 (10/04/2016)

  • [Feature] Users are able to reset their password via email (password recovery).

版本 9.7.0 (10/03/2016)

  • [Feature] Logins with a new device or from an unknown source will inform the account holder about the potentially suspicious login. New devices are stored and shown in the personal device management overview. (this was a customer request)

版本 9.6.0 (06/24/2016)

  • [Feature] Added a limiter to prevent malicious users from scraping our data without authorization.

版本 9.5.0 (06/22/2016)

  • [Feature] Added full support for CVSSv3. (this was a customer request)

版本 9.4.0 (10/01/2016)

版本 9.3.1 (07/05/2016)

  • [Optimization] Performance optimization for all web views.

版本 9.3.0 (06/30/2016)

  • [Feature] Some statistical data is now stored in a centralized table which allows them to be shown on multiple places without new calculations every time.

版本 9.2.0 (05/02/2016)

  • [Feature] Support for data fields of Tenable Nessus.

版本 9.1.1 (04/29/2016)

  • [Optimization] Optimize redirects of RSSS feed requests.

版本 9.1.0 (04/27/2016)

  • [Feature] Some data points are now shown in bubbles.

  • [Optimization] Introduced a new site footer.

版本 9.0.0 (04/14/2016) ⭐

  • [Optimization] Complete rewrite of the search engine to provide better matches and optimized performance.

版本 8.1.2 (04/06/2016)

  • [Optimization] Optimization of HTML code to make pages smaller and faster to download and render.

版本 8.1.1 (04/04/2016)

  • [Bugfix] Fixed a bug or slow indexes which improved the performance of vulnerability display a lot.

版本 8.1.0 (04/01/2016)

  • [Feature] Introduction of new summaries and descriptions with more data enrichment.

  • [Optimization] Performance optimization.

版本 8.0.0 (03/14/2016) ⭐

  • [Feature] Introducing Chart.js to generate dynamic charts.

版本 7.1.3 (03/11/2016)

  • [Optimization] Establish VulDB as independent service to gain more flexibility.

版本 7.1.2 (02/23/2016)

  • [Optimization] Migration to new hardware.

版本 7.1.1 (02/17/2016)

  • [Optimization] Renaming the Twitter handle from scipvulbot to "vuldb"https://twitter.com/vuldb.

版本 7.1.0 (01/19/2016)

  • [Feature] Enhancing statistical overview to provide previews and forecasts based in historical data.

  • [Feature] Creating new text for different pages and sub-pages.

版本 7.0.5 (12/01/2015)

  • [Optimization] Adding caching modules to improve site performance. Caching is possible per site and file. (this was a customer request)

版本 7.0.4 (11/20/2015)

  • [Optimization] Increasing update frequency of existing entries. (this was a customer request)

版本 7.0.3 (08/19/2015)

  • [Bugfix] Corrected the listing of multiple authors of a vulnerability.

版本 7.0.2 (08/07/2015)

  • [Optimization] More performance optimization of database queries.

版本 7.0.1 (08/03/2015)

  • [Optimization] Performance optimization of database queries.

版本 7.0.0 (07/10/2015) ⭐

  • [Feature] Redesign of modular frontpage with the introduction of Top 5 lists.

版本 6.31.0 (07/07/2015)

  • [Feature] Adding Qualys data to vulnerability entries.

  • [Feature] Adding SecurityCenter data to vulnerability entries.

版本 6.30.0 (03/09/2015)

  • [Feature] Introduction of new queue for vulnerability processing by mod team.

版本 6.29.3 (02/25/2015)

  • [Optimization] Optimization of all X-Force data import and display.

版本 6.29.2 (02/03/2015)

  • [Optimization] Optimizaton of summaries and descriptions of vulnerability entries.

版本 6.29.1 (01/08/2015)

  • [Optimization] Optimization of version descriptions of vulnerability entries.

版本 6.29.0 (06/24/2014)

  • [Feature] Approaching backlog of old entries before 2003 with vulnerabilities ranging back to 1988. (original announcement) (this was a customer request)

版本 6.28.0 (05/26/2014)

  • [Feature] Introduction of the "see also" hint which lists entries with are connected or similar.

版本 6.27.0 (04/17/2014)

  • [Feature] Adding a field to declare the date of the introduction of a vulnerability.

版本 6.26.1 (03/27/2014)

  • [Optimization] Optimization of queuing of new vulnerabilities to better prioritize processing.

版本 6.26.0 (03/20/2014)

  • [Feature] Added language support for Polish. (this was a customer request)

版本 6.25.12 (03/14/2014)

  • [Optimization] Database index optimization.

版本 6.25.11 (03/07/2014)

  • [Optimization] Optimizing collision detection during the processing of new entries.

版本 6.25.10 (02/10/2014)

  • [Optimization] Optimizing summaries regarding sources of vulnerability entries.

版本 6.25.9 (01/29/2014)

  • [Optimization] Added helper for vulnerability moderation team to determine arguments of attacks faster and more reliable.

版本 6.25.8 (01/28/2014)

  • [Optimization] Optimizing summaries regarding code samples.

版本 6.25.7 (01/23/2014)

  • [Optimization] Optimizing helper for vulnerability moderation team to complete new and existing entries with additional data. This increases data quality drastically.

版本 6.25.6 (01/14/2014)

  • [Bugfix] Fixed a bug where sometimes summaries and descriptions did contain spaces twice instead of once. This was just a problem in the HTML source code and not on the rendered web site.

版本 6.25.5 (01/09/2014)

  • [Optimization] Added helper for vulnerability moderation team to determine keywords which shall be used within the title of a vulnerability entry.

版本 6.25.4 (12/19/2013)

  • [Optimization] Optimizing the autocomplete feature to update new entries with historical data.

版本 6.25.3 (11/06/2013)

  • [Optimization] Optimizing the pre-parser to handle import of new vulnerability entries.

版本 6.25.2 (10/22/2013)

  • [Optimization] Changing the algorithm to calculate the current threat level.

版本 6.25.1 (10/21/2013)

  • [Optimization] Changing the algorithm to calculate the risk rating of vulnerability entries.

版本 6.25.0 (10/18/2013)

  • [Feature] Adding the support for OpenVAS data.

版本 6.24.0 (10/17/2013)

  • [Feature] Introducing the threat level to show an indicator for the current vulnerability landscape.

版本 6.23.0 (10/03/2013)

  • [Feature] Adding the possibility to add a custom word to the title to provide more details on first sight.

版本 6.22.0 (10/01/2013)

  • [Feature] Establishing a background updater which handles entries which need to be updated without interfering with the manual work of the moderation team.

  • [Optimization] Enhancement of the review procedure of CVE entries pushed by MITRE to improve processing and quality.

版本 6.21.0 (09/13/2013)

版本 6.20.1 (09/12/2013)

  • [Optimization] Completing all existing entries with Secunia data.

版本 6.20.0 (09/11/2013)

  • [Feature] Introducing risk maps to provide easy comparability between risk ratings of different sources.

版本 6.19.0 (09/10/2013)

  • [Feature] Introducing support for Secunia data as a source.

  • [Feature] Introducing support for IBM X-Force data as a source.

版本 6.18.0 (08/23/2013)

版本 6.17.0 (08/12/2013)

版本 6.16.0 (08/09/2013)

  • [Feature] Adding support for a wide variety of new data fields.

版本 6.15.2 (07/05/2013)

  • [Optimization] Enhancement of the review procedure of Nessus entries.

版本 6.15.1 (06/28/2013)

  • [Optimization] Optimizing the plausability checks during vulnerability moderation to prevent contradicting and wrong data.

版本 6.15.0 (06/19/2013)

  • [Feature] Added support for CPE to better identification of products.

版本 6.14.1 (06/11/2013)

  • [Optimization] Updating large quantities of vulnerabilities is now improved thanks to incremental updates.

版本 6.14.0 (06/03/2013)

  • [Feature] Added support for screenshots per entries to illustrate attacks and countermeasures. (original announcement)

  • [Feature] Added support to embed external videos per entries to illustrate attacks and countermeasures. Videos can be hosted at YouTube and Vimeo. (original announcement)

版本 6.13.0 (05/31/2013)

  • [Feature] Added the capability to add quotes from advisories to enrich entries.

  • [Feature] Added the capability to add links to videos for a vulnerability.

版本 6.12.0 (04/29/2013)

版本 6.11.0 (04/11/2013)

  • [Feature] Added the capability to list multiple different products in an affected list. This is done additionally to the main product that is affected by a vulnerability.

版本 6.10.2 (04/04/2013)

  • [Optimization] Enhanced input validation mechanism during vulnerability management to prevent mistakes regarding vendor/product definitions.

版本 6.10.1 (03/28/2013)

  • [Optimization] Optimization of logging and tracking of queued items processed by the moderation team.

版本 6.10.0 (03/19/2013)

  • [Feature] Added input validation mechanisms during vulnerability management.

  • [Optimization] Optimized input validation mechanisms during vulnerability management.

版本 6.9.1 (01/09/2013)

  • [Bugfix] Fixed an issue in the database. This did only affect moderation of vulnerabilities and was not reflected on the user-side of the service.

版本 6.9.0 (12/21/2012)

  • [Feature] Added a feature to normalize terms between different vulnerability entries.

版本 6.8.1 (11/26/2012)

  • [Optimization] Prepared the support for Milw0rm data for entries with an ID up to 50000.

版本 6.8.0 (10/31/2012)

版本 6.7.0 (10/15/2012)

版本 6.6.0 (10/01/2012)

  • [Feature] Added language support for Spanish. (original announcement) (this was a customer request)

  • [Bugfix] Fixed an upload problem of new entries into the database.

版本 6.5.0 (09/24/2012)

版本 6.4.0 (07/04/2012)

  • [Feature] Migrating all available data from NASLDB.

版本 6.3.0 (06/18/2012)

  • [Feature] Added language support for Italian. (original announcement) (this was a customer request)

  • [Bugfix] Fixed a problem in the German module responsible to handle umlauts.

版本 6.2.2 (06/05/2012)

  • [Optimization] Optimizing the autocomplete feature to update new entries with historical data.

版本 6.2.1 (04/10/2012)

  • [Bugfix] Fixed a problem during the display of archive data.

版本 6.2.0 (03/13/2012)

  • [Feature] Added support for better linking to external sources.

版本 6.1.1 (03/09/2012)

  • [Optimization] Added new categories/keywords in the existing RSS feeds.

版本 6.1.0 (03/08/2012)

  • [Feature] Added the calculation of the exposure time which measures the time of the disclosure and the mitigation possibilities of a vulnerability.

  • [Optimization] Reviewed all available data of OSVDB.

版本 6.0.0 (03/06/2012) ⭐

  • [Optimization] Optimization of summaries and descriptions.

  • [Feature] Added support to show images of vendors/products.

  • [Feature] Added support for Google dorks to find issues very quickly.

版本 5.2.2 (03/05/2012)

  • [Optimization] Performance optimization.

版本 5.2.1 (03/02/2012)

  • [Optimization] Performance optimization.

版本 5.2.0 (02/15/2012)

  • [Feature] Added web import feature for vulnerability moderators to handle new entries based on web ressources.

版本 5.1.0 (01/06/2012)

  • [Feature] Added single import feature for vulnerability moderators to handle single entries outside the regular queueing.

版本 5.0.0 (02/22/2011) ⭐

  • [Feature] Establishing new database backend with much more possibilities.

版本 4.10.2 (12/01/2010)

  • [Optimization] Move to more powerful hardware due to increase in access.

版本 4.10.1 (07/30/2010)

  • [Optimization] Backporting all information for reference maps of existing entries.

版本 4.10.0 (06/10/2010)

  • [Feature] Adding Alert Info on web site to inform visitors about latest critical issue.

  • [Feature] Delivering ads for non-paying and unauthenticated users.

  • [Optimization] Optimizing database structure for more flexibility and performance.

版本 4.9.0 (03/08/2010)

版本 4.8.1 (02/10/2010)

版本 4.8.0 (02/08/2010)

  • [Feature] Adding the alert info on top of the site to show the most recent vulnerability with the highest emergency rating.

版本 4.7.2 (02/05/2020)

  • [Optimization] Improvement of VulDB alert system.

版本 4.7.1 (02/02/2010)

版本 4.7.0 (01/11/2011)

  • [Feature] Added VulDB Alert to inform customers about issues applicable for them. (this was a customer request)

版本 4.6.0 (12/16/2009)

版本 4.5.0 (10/27/2009)

版本 4.4.0 (09/03/2009)

版本 4.3.0 (08/25/2009)

  • [Feature] Completing existing entries with mast actual data. This includes but is not limited to CVE, Secunia, SecurityTracker, vendor, and confirmation details. (original announcement)

版本 4.2.0 (08/20/2009)

  • [Feature] Adding new data fields to enrich vulnerability entries.

版本 4.1.0 (08/01/2009)

  • [Feature] Introduction of recurring update processes.

版本 4.0.1 (06/26/2009)

  • [Optimization] Optimization of existing RSS feeds by adding summaries and categories. (original announcement)

版本 4.0.0 (06/23/2009) ⭐

版本 3.5.0 (07/01/2006)

版本 3.4.0 (05/19/2004)

版本 3.3.0 (01/01/2004)

  • [Feature] Introduction of Emergency-SMS notification service.

版本 3.2.0 (12/19/2003)

版本 3.1.0 (11/18/2003)

版本 3.0.0 (03/01/2003) ⭐

  • [Feature] Bugbase is completely re-written in Perl and uses a dedicated backend for vulnerability moderation to gain more flexibility.

  • [Optimization] Bugbase is re-branded as scip VulnDB and hosted on www.scip.ch.

版本 2.0.0 (09/01/2002) ⭐

  • [Optimization] Changed from static web site to dynamic database (with the kind support of DukeCS).

版本 1.0.0 (01/01/1997) ⭐

  • [Feature] Bugbase project launch by Marc Ruef.

Interested in the pricing of exploits?

See the underground prices here!