Everyone can read the surface for free. Sign in to sound the whole corpus; add Pro or Enterprise when you need alerts, higher rate limits, and bulk export. Agents are first-class on every tier.
Browsing, no sign-in
Latest 100 CVEs
Researchers & analysts
The full corpus
Teams & power agents
Alerts & scale
$7.00/mo
Org-wide & integrations
Effectively uncapped
No other vulnerability database lets you request an exploit. Pro and Enterprise members can cast an on-demand PoC request against any CVE — our team develops a working proof-of-concept and attaches it straight to the feed item. Turn “is this exploitable?” into a definitive answer instead of a guess.
Pro keeps 5 requests open at once · Enterprise 25. Public PoCs (Exploit-DB) are always linked for free on the CVE page.
| Capability | Anonymous | Free | Pro | Enterprise |
|---|---|---|---|---|
| CVE corpus | Latest 100 | Full corpus | Full corpus | Full corpus |
| API rate limit Anonymous is per-IP; authenticated is per-user. | 60/min | 60/min | 600/min | 6,000/min |
| Saved searches | — | 2 | 20 | 1,000 |
| API keys | — | 1 | 5 | 200 |
Raw markdown, a machine manifest at /llms.txt, an OpenAPI spec, an MCP endpoint, and cost-control knobs (sparse fields, batch ids, cheap freshness probes) are available to anonymous and authenticated callers alike. An API key just raises your rate limit and unlocks the full corpus. See the API docs.
Already have an account? Manage your plan & keys →
| In-app alerts Saved-search matches surface in-app for any signed-in account. |
| — |
| ✓ |
| ✓ |
| ✓ |
| Webhook / email alerts | — | — | ✓ | ✓ |
| Bulk export | — | — | ✓ | ✓ |
| On-demand PoC requests Request a working proof-of-concept against any CVE; our team develops it and attaches it to the feed item. Limit is the number open at once. | — | — | 5 open | 25 open |
| Raw markdown & agent APIs /llms.txt, /openapi.json, /api/* and raw markdown — anonymous within the public window, full corpus once authenticated. | Window | ✓ | ✓ | ✓ |