This method returns a list of discovered vulnerabilities. The ?reported=today parameter can be used in a scheduled daily call to the endpoint to obtain a vulnerability feed.

Method URL
GET /api/v2/vulns.json


Param Type Required Notes
reported string No One of: today, month, all. If unspecified, the first page of all vulnerabilities will be reported.
page integer No Displays results based on specified page number (default 1, 1-indexed).
per_page integer No Number of results per page (defaults to 20 results).

Example Response

Code Status
200 OK

Example Response JSON

        "category": "vulnerability",
        "created_at": "2016-03-01T06:01:39-11:00",
        "description": "HTTP.sys in Microsoft Windows Server 2012 R2 allows remote attackers...",
        "id": 1591077,
        "node_id": 5153,
        "severity": 10,
        "title": "HTTP.sys Remote code execution vulnerability - CVE-2015-1635 (MS15-034)",
        "vuln_ref": "oval:org.mitre.oval:def:28623",
        "vuln_source": "mitre/windows_2015.xml",
        "vuln_version": "5"
Tags: mitre oval