Trending Vulnerabilities

To monitor for trending vulnerabilties, use the vulnerabilities index page, with the 'sort' parameter set to one of the following:

trending_1d
trending_7d
trending_30d

Vulnerabilities Index

get

Endpoint to browse vulnerabilities, with filters on some criteria.

Query parameters

filterstringOptional

A string used to filter vulnerabilities. It can start with specific prefixes to indicate the type of filter:

cve:: Filter by CVE ID.
uuid:: Filter by UUID.
internal_name:: Filter by internal_name (exact match).
desc:: Filter by description (searches both description and gen_description fields).
gen_display_name:: Filter by gen_display_name.
cisa_kev:: Filter by cisa_kev.
state:: Filter by state.
If the filter string matches the pattern CVE- or a UUID pattern, it will be treated as a specific filter.
If no prefix is provided, it defaults to a description filter (searches both description fields).

sortstringOptional

Field to sort by - either cve_id, gen_cwe_id, state, created_at, updated_at, enriched_at, published_at, cvss_base_score, cvss_version, epss_score, epss_percentile, trending_1d, trending_7d, or trending_30d

Default: created_atPattern:

^(cve_id|gen_cwe_id|state|created_at|updated_at|enriched_at|published_at|cvss_base_score|cvss_version|epss_score|epss_percentile|trending_1d|trending_7d|trending_30d)$

orderstringOptional

Sort order - either asc or desc

Default: descPattern: ^(asc|desc)$

offsetintegerOptional

The number of items to skip before starting to collect the result set.

Default: 0

limitinteger · min: 1Optional

The maximum number of items to return.

Default: 100

include_mergedbooleanOptional

Include entities that have been merged into other entities

Default: false

followedbooleanOptional

When true, returns only vulnerabilities that the tenant is following

Default: false

cvss_base_scoreany ofOptional

Filter on the cvss_base_score field by exact match

numberOptional

nullOptional

cvss_base_score__neqany ofOptional

Filter on the cvss_base_score field for items not equal to the given value

numberOptional

nullOptional

cvss_base_score__gtany ofOptional

Filter on the cvss_base_score field for items greater than the given value

numberOptional

nullOptional

cvss_base_score__gteany ofOptional

Filter on the cvss_base_score field for items greater than or equal to the given value

numberOptional

nullOptional

cvss_base_score__ltany ofOptional

Filter on the cvss_base_score field for items less than the given value

numberOptional

nullOptional

cvss_base_score__lteany ofOptional

Filter on the cvss_base_score field for items less than or equal to the given value

numberOptional

nullOptional

cvss_base_score__isnullany ofOptional

Filter on the cvss_base_score field for items that are NULL (true) or NOT NULL (false)

booleanOptional

nullOptional

cvss_base_score__existsany ofOptional

Filter on the cvss_base_score field for items that exist (true/false)

booleanOptional

nullOptional

epss_scoreany ofOptional

Filter on the epss_score field by exact match

numberOptional

nullOptional

epss_score__neqany ofOptional

Filter on the epss_score field for items not equal to the given value

numberOptional

nullOptional

epss_score__gtany ofOptional

Filter on the epss_score field for items greater than the given value

numberOptional

nullOptional

epss_score__gteany ofOptional

Filter on the epss_score field for items greater than or equal to the given value

numberOptional

nullOptional

epss_score__ltany ofOptional

Filter on the epss_score field for items less than the given value

numberOptional

nullOptional

epss_score__lteany ofOptional

Filter on the epss_score field for items less than or equal to the given value

numberOptional

nullOptional

epss_score__isnullany ofOptional

Filter on the epss_score field for items that are NULL (true) or NOT NULL (false)

booleanOptional

nullOptional

epss_score__existsany ofOptional

Filter on the epss_score field for items that exist (true/false)

booleanOptional

nullOptional

epss_percentileany ofOptional

Filter on the epss_percentile field by exact match

numberOptional

nullOptional

epss_percentile__neqany ofOptional

Filter on the epss_percentile field for items not equal to the given value

numberOptional

nullOptional

epss_percentile__gtany ofOptional

Filter on the epss_percentile field for items greater than the given value

numberOptional

nullOptional

epss_percentile__gteany ofOptional

Filter on the epss_percentile field for items greater than or equal to the given value

numberOptional

nullOptional

epss_percentile__ltany ofOptional

Filter on the epss_percentile field for items less than the given value

numberOptional

nullOptional

epss_percentile__lteany ofOptional

Filter on the epss_percentile field for items less than or equal to the given value

numberOptional

nullOptional

epss_percentile__isnullany ofOptional

Filter on the epss_percentile field for items that are NULL (true) or NOT NULL (false)

booleanOptional

nullOptional

epss_percentile__existsany ofOptional

Filter on the epss_percentile field for items that exist (true/false)

booleanOptional

nullOptional

gen_cwe_idany ofOptional

Filter on the gen_cwe_id field by exact match

stringOptional

nullOptional

gen_cwe_id__neqany ofOptional

Filter on the gen_cwe_id field for items not equal to the given value

stringOptional

nullOptional

gen_cwe_id__inany ofOptional

Filter on the gen_cwe_id field for items that match any value in a comma-separated list

stringOptional

nullOptional

gen_cwe_id__not_inany ofOptional

Filter on the gen_cwe_id field for items that do not match any value in a comma-separated list

stringOptional

nullOptional

gen_cwe_id__likeany ofOptional

Filter on the gen_cwe_id field for items that match a SQL LIKE pattern (use % as wildcard, case-sensitive)

stringOptional

nullOptional

gen_cwe_id__ilikeany ofOptional

Filter on the gen_cwe_id field for items that match a SQL LIKE pattern (use % as wildcard, case-insensitive)

stringOptional

nullOptional

gen_cwe_id__isnullany ofOptional

Filter on the gen_cwe_id field for items that are NULL (true) or NOT NULL (false)

booleanOptional

nullOptional

gen_cwe_id__existsany ofOptional

Filter on the gen_cwe_id field for items that exist (true/false)

booleanOptional

nullOptional

published_atany ofOptional

Filter on the published_at field by exact match

string · date-timeOptional

nullOptional

published_at__neqany ofOptional

Filter on the published_at field for items not equal to the given value

string · date-timeOptional

nullOptional

published_at__ltany ofOptional

Filter on the published_at field for items less than the given value

string · date-timeOptional

nullOptional

published_at__lteany ofOptional

Filter on the published_at field for items less than or equal to the given value

string · date-timeOptional

nullOptional

published_at__gtany ofOptional

Filter on the published_at field for items greater than the given value

string · date-timeOptional

nullOptional

published_at__gteany ofOptional

Filter on the published_at field for items greater than or equal to the given value

string · date-timeOptional

nullOptional

published_at__isnullany ofOptional

Filter on the published_at field for items that are NULL (true) or NOT NULL (false)

booleanOptional

nullOptional

published_at__existsany ofOptional

Filter on the published_at field for items that exist (true/false)

booleanOptional

nullOptional

exploits_countany ofOptional

Filter by exploits count

integerOptional

nullOptional

exploits_count__neqany ofOptional

Filter by exploits count (for items not equal to the given value)

integerOptional

nullOptional

exploits_count__gtany ofOptional

Filter by exploits count (for items greater than the given value)

integerOptional

nullOptional

exploits_count__gteany ofOptional

Filter by exploits count (for items greater than or equal to the given value)

integerOptional

nullOptional

exploits_count__ltany ofOptional

Filter by exploits count (for items less than the given value)

integerOptional

nullOptional

exploits_count__lteany ofOptional

Filter by exploits count (for items less than or equal to the given value)

integerOptional

nullOptional

exploitations_countany ofOptional

Filter by exploitations count

integerOptional

nullOptional

exploitations_count__neqany ofOptional

Filter by exploitations count (for items not equal to the given value)

integerOptional

nullOptional

exploitations_count__gtany ofOptional

Filter by exploitations count (for items greater than the given value)

integerOptional

nullOptional

exploitations_count__gteany ofOptional

Filter by exploitations count (for items greater than or equal to the given value)

integerOptional

nullOptional

exploitations_count__ltany ofOptional

Filter by exploitations count (for items less than the given value)

integerOptional

nullOptional

exploitations_count__lteany ofOptional

Filter by exploitations count (for items less than or equal to the given value)

integerOptional

nullOptional

detection_signatures_countany ofOptional

Filter by detection_signatures count

integerOptional

nullOptional

detection_signatures_count__neqany ofOptional

Filter by detection_signatures count (for items not equal to the given value)

integerOptional

nullOptional

detection_signatures_count__gtany ofOptional

Filter by detection_signatures count (for items greater than the given value)

integerOptional

nullOptional

detection_signatures_count__gteany ofOptional

Filter by detection_signatures count (for items greater than or equal to the given value)

integerOptional

nullOptional

detection_signatures_count__ltany ofOptional

Filter by detection_signatures count (for items less than the given value)

integerOptional

nullOptional

detection_signatures_count__lteany ofOptional

Filter by detection_signatures count (for items less than or equal to the given value)

integerOptional

nullOptional

mentions_countany ofOptional

Filter by mentions count

integerOptional

nullOptional

mentions_count__neqany ofOptional

Filter by mentions count (for items not equal to the given value)

integerOptional

nullOptional

mentions_count__gtany ofOptional

Filter by mentions count (for items greater than the given value)

integerOptional

nullOptional

mentions_count__gteany ofOptional

Filter by mentions count (for items greater than or equal to the given value)

integerOptional

nullOptional

mentions_count__ltany ofOptional

Filter by mentions count (for items less than the given value)

integerOptional

nullOptional

mentions_count__lteany ofOptional

Filter by mentions count (for items less than or equal to the given value)

integerOptional

nullOptional

weaknesses_countany ofOptional

Filter by weaknesses count

integerOptional

nullOptional

weaknesses_count__neqany ofOptional

Filter by weaknesses count (for items not equal to the given value)

integerOptional

nullOptional

weaknesses_count__gtany ofOptional

Filter by weaknesses count (for items greater than the given value)

integerOptional

nullOptional

weaknesses_count__gteany ofOptional

Filter by weaknesses count (for items greater than or equal to the given value)

integerOptional

nullOptional

weaknesses_count__ltany ofOptional

Filter by weaknesses count (for items less than the given value)

integerOptional

nullOptional

weaknesses_count__lteany ofOptional

Filter by weaknesses count (for items less than or equal to the given value)

integerOptional

nullOptional

advisories_countany ofOptional

Filter by advisories count

integerOptional

nullOptional

advisories_count__neqany ofOptional

Filter by advisories count (for items not equal to the given value)

integerOptional

nullOptional

advisories_count__gtany ofOptional

Filter by advisories count (for items greater than the given value)

integerOptional

nullOptional

advisories_count__gteany ofOptional

Filter by advisories count (for items greater than or equal to the given value)

integerOptional

nullOptional

advisories_count__ltany ofOptional

Filter by advisories count (for items less than the given value)

integerOptional

nullOptional

advisories_count__lteany ofOptional

Filter by advisories count (for items less than or equal to the given value)

integerOptional

nullOptional

malware_countany ofOptional

Filter by malware count

integerOptional

nullOptional

malware_count__neqany ofOptional

Filter by malware count (for items not equal to the given value)

integerOptional

nullOptional

malware_count__gtany ofOptional

Filter by malware count (for items greater than the given value)

integerOptional

nullOptional

malware_count__gteany ofOptional

Filter by malware count (for items greater than or equal to the given value)

integerOptional

nullOptional

malware_count__ltany ofOptional

Filter by malware count (for items less than the given value)

integerOptional

nullOptional

malware_count__lteany ofOptional

Filter by malware count (for items less than or equal to the given value)

integerOptional

nullOptional

created_at__gteany ofOptional

Filter on the created_at field for items greater than or equal to the given value

string · date-timeOptional

nullOptional

created_at__ltany ofOptional

Filter on the created_at field for items less than the given value

string · date-timeOptional

nullOptional

updated_at__gteany ofOptional

Filter on the updated_at field for items greater than or equal to the given value

string · date-timeOptional

nullOptional

updated_at__ltany ofOptional

Filter on the updated_at field for items less than the given value

string · date-timeOptional

nullOptional

Responses

200

Successful Response

application/json

404

Not found

422

Validation Error

application/json

get

/v1/vulnerabilities

GET /v1/vulnerabilities HTTP/1.1
Accept: */*

{
  "total": 1,
  "offset": 1,
  "limit": 1,
  "message": "text",
  "data": [
    {
      "uuid": "text",
      "created_at": "2026-02-04T00:33:24.628Z",
      "updated_at": "2026-02-04T00:33:24.628Z",
      "enriched_at": "2026-02-04T00:33:24.628Z",
      "internal_name": "text",
      "merged_into_uuid": "text",
      "merged_at": "2026-02-04T00:33:24.628Z",
      "merged_reason": "text",
      "cve_id": "text",
      "state": "text",
      "description": "text",
      "cvss_base_score": 1,
      "cvss_version": 1,
      "cvss_vector": "text",
      "cvss_source": "text",
      "cvss_type": "text",
      "cvss_data": [
        {
          "ANY_ADDITIONAL_PROPERTY": "anything"
        }
      ],
      "epss_score": 1,
      "epss_percentile": 1,
      "cisa_kev_added_at": "2026-02-04T00:33:24.628Z",
      "reserved_at": "2026-02-04T00:33:24.628Z",
      "published_at": "2026-02-04T00:33:24.628Z",
      "upstream_references": [
        {
          "ANY_ADDITIONAL_PROPERTY": "anything"
        }
      ],
      "raw_mitre_cvelist_v5_cves_adp": [
        {
          "ANY_ADDITIONAL_PROPERTY": "anything"
        }
      ],
      "gen_description": "text",
      "gen_display_name": "text",
      "gen_cwe_id": "text",
      "gen_impact": "text",
      "gen_mitigations": "text",
      "gen_remediation": "text",
      "gen_requires": "text",
      "gen_provides": "text",
      "image_s3_key": "text",
      "followed": false
    }
  ]
}

Once you've identified the ideal aperature, and you'd like more detail about /why/ they are trending, you can simply build a list of the vulnerability uuids and request each one individually, getting recent mentions using the following endpoint:

Single Vulnerability Mentions

get

Path parameters

identifierstringRequired

The unique CVE ID or UUID of the vulnerability to retrieve

Query parameters

offsetintegerOptional

Number of items to skip

Default: 0

limitinteger · min: 1 · max: 1000Optional

Maximum number of items to return

Default: 100

sortstringOptional

Field to sort by

Default: published_atPattern: ^(created_at|updated_at|published_at|source)$

orderstringOptional

Sort order

Default: descPattern: ^(asc|desc)$

filterstringOptional

Filter parameter (e.g., 'user_generated_content:true' or 'user_generated_content:false')

Responses

200

Successful Response

application/json

404

Not found

422

Validation Error

application/json

get

/v1/vulnerabilities/{identifier}/mentions

GET /v1/vulnerabilities/{identifier}/mentions HTTP/1.1
Accept: */*

{
  "total": 1,
  "offset": 1,
  "limit": 1,
  "message": "text",
  "data": [
    {
      "uuid": "text",
      "entity_type": "text",
      "entity_uuid": "text",
      "created_at": "2026-02-04T00:33:24.628Z",
      "updated_at": "2026-02-04T00:33:24.628Z",
      "published_at": "2026-02-04T00:33:24.628Z",
      "overview": "text",
      "context": "text",
      "merged_from_uuid": "text",
      "reference_uuid": "text",
      "reference_url": "text",
      "reference_source": "text",
      "reference_user_generated_content": true,
      "reference_topic": "text",
      "vulnerability_uuid": "text",
      "cve_id": "text",
      "vulnerability_gen_display_name": "text"
    }
  ]
}

Last updated 3 months ago

hashtagVulnerabilities Index

hashtagSingle Vulnerability Mentions

Vulnerabilities Index

Single Vulnerability Mentions