To request an account on OSVDB, please read the information below.

  • Accounts are granted at the discretion of the Open Security Foundation (OSF) and may be removed at any time without notice.
  • Use of the OSVDB website and resources, including the API, must be done in adherence to the OSVDB License. Requesting and using an account on this system denotes your agreement to these terms and the license. (http://www.osvdb.org/osvdb_license)
  • While some tools may be free (e.g. CMS-Explorer, Nmap, Dradis), the use of OSVDB data within them is not. Use of those tools in a commercial environment requires a license from OSF. Further, free exports are not available, which is the basis for tools like modsecurity that used to integrate our data. Note: At this time, we are not providing accounts for such tools unless they are used in a commercial environment and the data is licensed from us.
  • All content in OSVDB is Copyright (C) to the Open Security Foundation where applicable.
  • This database has been created by OSF project leaders, OSF employees, and Risk Based Security employees. Less than 0.5% of the content has come from community contributions over the last 8 years. The 'open sourced' in our name refers to our method for collecting information.
  • Use of the OSVDB, and/or API in a commercial atmosphere requires a license from OSF or a commercial partner of our designation. Failure to obtain a license for such use will result in account termination and legal action as necessary.
  • Note that database exports have not been available on OSVDB since early 2012. They are only available to commercially licensed customers.
  • Aggressive scraping of data, with or without an account, will be interpreted as an attempt to bypass our license and may result in IP or netblock bans, as well as complaints to the offending ISP.
  • Accounts may be terminated at any time, at the discretion of the project moderators. This may happen due to perceived abuse of system resources (e.g. excessive API calls), improper citation of our information, or not contributing to the project in any manner.

Once you have read the material above and agree to it, please mail [email protected] with a desired username along with a detailed description of your intended use. For example, integrating it into a product, using in a commercial environment, require API access for a specific reason or exact tool(s), or desire to contribute to the project (specify how). Requests made with vague details may be ignored completely. Requests from any free email provider (e.g. gmail.com, hotmail.com) may be ignored completely.

If approved, you will receive an automated email asking you to verify your account. If you do not receive it, please check your spam folder and/or whitelist email from @osvdb.org. After account verification, use the 'Forgot Password?' function to reset your password. Thank you!

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use