This is the official data repository for cvebase, open to all and can be edited by anyone to collectively improve the CVE & Researcher pages. Updates are immediately synced with the content at cvebase.com.
The cvebase platform is a community-driven data platform for security vulnerabilities, developed for use by security researchers, penetration testers, and bug bounty hunters. Here are the main features of cvebase:
- Comprehensive real time vulnerability disclosures.
- Verified Security Researcher profiles featuring published CVEs to date.
- Community driven enhancements and clarifications to official CVE vendor advisories.
- References link to valid Proof-of-Concept Exploits and detailed technical writeups.
This repository contains the Markdown files for the two main components of cvebase.com:
cve: CVE files are located in the/cve/directory, organized by year and sequence identifier following the naming scheme set byCVEProject/cvelist.researcher: Researcher profiles are in the/researcher/directory, named by researcher slug.
Inspired by static site generator gohugoio/hugo, the Markdown files have YAML "front matter" to define metadata for both CVEs and Researchers.
See example files here:
The project is currently under active development. Please follow us on twitter @cvebase and check back soon.
- Send pull requests
- Create an issue in this repository
Repository content licensed CC BY-NC-SA 4.0.