General

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can vote and comment on it.

If it doesn't exist, you can post your idea so others can vote on it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. Planned new feature: Vulnerability feeds and alerts.

    Users will be able to subscribe for weekly/monthly vulnerability feeds.
    Users will be able to subscribe for vulnerabilities related to a vendor, product, a specific version of a product or all vulnerabilities.
    This feature will be probably free.

    41 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
    • Option to export searches

      An export feature would be really nice on the site. Excel mainly.

      13 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        1 comment  ·  Admin →
      • Provide feeds as JSON data for programmatic use.

        The new feeds are great, but I'd like to be able to use them as a hook for a porting system. The current design goal seems to be interactive usage with human-formatted data. It would be fantastic if the data were also available in some kind of machine-friendly format such as JSON to allow programmatic use. That way, I can regularly go through and check that the versions I've either are fixed for CVEs or that I've got patches for all outstanding issues.

        I've donated before, and I'd strongly consider doing so again if this functionality were developed.

        11 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          1 comment  ·  Admin →
        • Offline Search

          could we get an exported database for offline use of the search content? It may in SQL, XML or Excel format.

          8 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
          • 6 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
            • Full, RESTful API

              Can you please provide a fully functional search api?

              At the moment, I am having to scrape the data from your website which is slow.

              At the moment, I am doing a university project which links your CVE and embeds the exploit information within the same JSON/XML object.

              I would be interested in working with you to achieve this. Free of charge.

              Let me know your thoughts,

              Regards,
              Abdullah

              3 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
              • Add attack vector as one of search criteria

                Would be able to categorize with different attack vectors

                3 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                • Allow display of All Search Results in one page, instead of requiring multiple pages.

                  Allow display of All Search Results in one page, instead of requiring multiple pages. This would allow users to copy/paste entire results to another source if needed.

                  3 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                  • 3 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                    • Fix the "# of Exploits" in the list view

                      In the list view, f.e. "Oracle » JRE : Security Vulnerabilities Published In 2012 " there's a column for "# of Exploits" but it's never filled, even some of the listed items have metasploit-modules shown in their pages, f.e. CVE-2012-0507 and CVE-2012-1723. This feature would be very useful to get a quick overview over the threat to certain java versions.

                      3 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                      • Search of the corrected vulnerabilities (known by the CVE included in the patch bulletins)

                        The search allows to have the vulnerabilities number for each product. Generally, the vendors include the CVE references in their bulletins describing the patch. Also we could know and compare the disclosures and the corrected vulnerabilities

                        2 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)

                          I am working on a new semantic wiki based knowledge base, www.itsecuritykb.com, which will address this requirement.
                          The knowledge base will contain vendor bulletins and advisories and these items will be linked to CVE entries. So, hopefully, you will be able to find everything you need to know about a security issue.

                        • New feature (Under development): Summaries and previews for vulnerability references

                          Summaries and page previews for vulnerability references will be added to vulnerability details page.
                          Will be similar to Google search results; title, page summary and preview image.

                          2 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                          • questions

                            im looking to start a bbs and cant find the woftware to do so .i can find it but its from untrusted sorces

                            2 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                            • 1 vote
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                              • add new feature: compare projects security record

                                Allowing you to compare the record between two different products (or even vendors) would make it easy for users to choose a solution that seems more secure.
                                Comparing shouldn't be too hard (I guess): pick 2, 3 or 4 products, click a button and see the total number of vulnerabilities per year as a table of products as columns and years as lines, and a "total" line. A bars chart can also be shown with parallel bars in different colors for each product, year by year.
                                An additional filter might allow to check only one type of vulnerability at a…

                                1 vote
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                • 1 vote
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                  • 1 vote
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                    • 1 vote
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                      • alerts on favorites

                                        generate alerts based on new CVE entries from favorites list.

                                        1 vote
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                        • Correction (SYSTEM/SYSTEM repeated)

                                          On this page:
                                          http://www.itsecdb.com/oval/definition/oval/gov.nist.2/def/5010/Microsoft-network-server-Disconnect-clients-when-logon-hour.html
                                          You have the key SYSTEM twice, as in:
                                          Registry key HKEY_LOCAL_MACHINE\System\System\CurrentControlSet\Services\LanManServer\Parameters\EnableForcedLogoff=1

                                          1 vote
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                          ← Previous 1
                                          • Don't see your idea?

                                          General

                                          Feedback and Knowledge Base