Discover/dbugs.ptsecurity.com API
live

dbugs.ptsecurity.com APIdbugs.ptsecurity.com

Access CVE details, CVSS scores, researcher leaderboards, and trending vulnerability data from Positive Technologies' dbugs database via 5 structured endpoints.

Developer Toolsgovernment publicb2b directory
Endpoints
5
Updated
14d ago
Try it
Full-text search query (e.g., 'chrome', 'CVE-2026-1731', 'privilege escalation')
Page number for pagination
Number of results per page
api.parse.bot/scraper/d798a609-8999-4eb7-add4-060fbb383313/<endpoint>
Ready to send
Fill in the parameters and hit sign in to send to see live response data here.
Use it in your codegrab a free API key at signup
curl -X POST 'https://api.parse.bot/scraper/d798a609-8999-4eb7-add4-060fbb383313/list_vulnerabilities' \
  -H 'X-API-Key: $PARSE_API_KEY' \
  -H 'Content-Type: application/json' \
  -d '{
  "fts": "chrome",
  "page": "2",
  "limit": "3"
}'
All endpoints · 5 totalclick to expand

Retrieve a paginated list of vulnerabilities with optional full-text search. Returns vulnerability summaries including CVE IDs, severity scores, affected vendors/products, and fix/exploit status.

Input
ParamTypeDescription
ftsstringFull-text search query (e.g., 'chrome', 'CVE-2026-1731', 'privilege escalation')
pageintegerPage number for pagination
limitintegerNumber of results per page
Response
{
  "type": "object",
  "fields": {
    "rows": "array of vulnerability summary objects containing vulner_id, cve_id, max_score, max_severity, vendors, products, has_fix, has_exploits, etc.",
    "count": "integer total number of matching vulnerabilities"
  },
  "sample": {
    "data": {
      "rows": [
        {
          "cve_id": "CVE-2026-6805",
          "created": "2026-05-07",
          "has_fix": true,
          "vendors": [
            "Ercom"
          ],
          "products": [
            "Cryptobox"
          ],
          "max_score": 6.9,
          "vulner_id": "PT-2026-38415",
          "has_exploits": false,
          "max_severity": "MEDIUM"
        }
      ],
      "count": 369358
    },
    "status": "success"
  }
}

About the dbugs.ptsecurity.com API

The dbugs (Positive Technologies) API exposes 5 endpoints covering vulnerability listings, full detail records, trending threats, and security researcher profiles. The list_vulnerabilities endpoint lets you search across the entire PT vulnerability database by keyword, CVE ID, or vulnerability class, returning severity scores, affected vendors and products, and fix and exploit availability for each result.

Vulnerability Search and Detail

The list_vulnerabilities endpoint accepts a fts parameter for full-text search — valid inputs include product names like chrome, identifiers like CVE-2026-1731, or descriptive terms like privilege escalation. Each result row returns vulner_id, cve_id, max_score, max_severity, vendors, products, has_fix, and has_expl. Pagination is controlled by page and limit. To retrieve the full record for any entry, pass its vulner_id to get_vulnerability_detail, which returns CVSS vectors grouped by source and locale, multi-locale descriptions, external references with ref_url and domain, credited researchers, and the highest max_score.

Trending Vulnerabilities and Social Signals

The get_trends endpoint returns vulnerabilities currently receiving elevated attention, with each row including twitter_timeline, posts_count, and last_tweets alongside the standard vulnerability fields. This makes it straightforward to surface threats generating active security community discussion without manually monitoring social feeds.

Researcher Leaderboards and Profiles

The list_researchers endpoint returns a ranked list of security researchers ordered by vulner_rating. Each row includes place, name, company, vulner_count, and vulner_average_rating. To view an individual researcher's attributed discoveries, pass their name to get_researcher_profile, which returns both the researcher object and a paginated array of their reported vulnerabilities including vulner_id, cve_id, max_score, max_severity, locales, and impacts.

Common use cases
  • Monitor newly disclosed critical or high-severity vulnerabilities affecting a specific vendor using list_vulnerabilities with an fts search.
  • Pull full CVSS vector data and multi-locale descriptions for a known PT or CVE ID to feed into an internal vulnerability management system.
  • Track trending threats by social media post volume using get_trends to prioritize patching queues.
  • Build a researcher attribution feed by querying get_researcher_profile for credited discoverers of specific vulnerabilities.
  • Rank external security researchers by vulner_rating via list_researchers for bug bounty program benchmarking.
  • Check has_expl and has_fix flags from list_vulnerabilities to filter exploitable-but-unpatched issues for immediate triage.
  • Aggregate last_tweets data from trending vulnerabilities to correlate social discussion spikes with disclosure timelines.
Pricing & limitsSee full pricing →
TierPriceCredits/monthRate limit
Free$0/mo1005 req/min
Hobby$30/mo1,00020 req/min
Developer$100/mo5,000250 req/min

One credit = one API call regardless of which marketplace API you call. Exceeding the rate limit returns a 429 response. Authenticate with the X-API-Key header.

Frequently asked questions
Does dbugs.ptsecurity.com have an official public developer API?+
Positive Technologies does not publish a documented public REST API for the dbugs vulnerability database. The data is presented through their web interface at dbugs.ptsecurity.com without an officially documented developer integration layer.
What does `get_vulnerability_detail` return beyond what `list_vulnerabilities` provides?+
list_vulnerabilities returns summary fields: vulner_id, cve_id, max_score, max_severity, vendors, products, has_fix, and has_expl. get_vulnerability_detail adds CVSS vectors grouped by source and locale, full multi-locale locales descriptions, an array of external references with ref_url and domain, and the researchers array crediting the discoverers.
Does the API expose vulnerability patch notes, vendor advisories, or changelog history?+
Not currently. The API covers external references via ref_url fields in the references array, but structured patch notes, vendor advisory text, or version-level changelog history are not returned as distinct fields. You can fork the API on Parse and revise it to add an endpoint targeting advisory-specific data.
Are there any limitations on what the researcher profile endpoint can return?+
The get_researcher_profile endpoint requires the researcher's name exactly as it appears in list_researchers results. The vulnerabilities list within the profile is paginated using page and limit. Researchers not present in the leaderboard — for example, those with no rated discoveries in the PT database — will not have retrievable profiles.
Does the API cover NVD or MITRE CVE data separately from PT's own identifiers?+
Not as standalone endpoints. The API returns cve_id fields alongside PT's own vulner_id identifiers, and CVSS data is grouped by source within get_vulnerability_detail. There are no dedicated endpoints for querying NVD or MITRE records directly. You can fork the API on Parse and revise it to add an endpoint that cross-references NVD identifiers.
Page content last updated . Spec covers 5 endpoints from dbugs.ptsecurity.com.
Related APIs in Developer ToolsSee all →
arxiv.org API
Search and discover academic research papers on arXiv using keywords, authors, titles, categories, and dates, then access detailed metadata for any paper. Browse the complete arXiv category taxonomy to explore research across different scientific disciplines.
alienvault.com API
Search and analyze global threat intelligence data including indicators of compromise, threat pulses, and adversary profiles from the Open Threat Exchange community. Monitor recent security alerts and access detailed information about threats and adversaries to strengthen your cybersecurity defenses.
allaboutcircuits.com API
Access educational electronics content from All About Circuits, including technical articles, circuit diagrams, textbook volumes, and forum discussions organized by category. Search and browse the latest resources, view detailed articles, explore engineering tools, and find answers across their community forums.
bazaardb.gg API
Search and retrieve comprehensive data about The Bazaar game cards, including items, skills, merchants, trainers, monsters, and events with full details like tiers, attributes, enchantments, and tooltips. Quickly find the specific card information you need to optimize your gameplay strategy and deck building.
icons8.com API
Search for millions of icons across different visual styles like colorful, pattern-based, and minimalist designs to find the perfect icon for your project. Discover and retrieve icons in your preferred style to enhance your designs and applications.
wynncraft.com API
Access detailed Wynncraft game information to look up item metadata and search across the complete item database, retrieve player statistics and character inventories, and browse guild information and global search results. Use this data to compare gear, track player progress, analyze guild rosters, or build tools for the Wynncraft community.
cursor.directory API
Search and discover AI cursor rules, MCP servers, and job listings organized by category to enhance your development workflow. Browse detailed information about each rule and server to find the tools and configurations that best fit your needs.
smstome.com API
Browse temporary phone numbers from countries around the world and read incoming SMS messages in real time. List available numbers by country, retrieve messages sorted newest to oldest, and search message history by sender or content.