The following URL, Headers and Parameters are required for requests to this API endpoint. Where a parameter is optional, it will be indicated. Otherwise treat all parameters as mandatory.
PUT /api/ss/vulnerability-with-library/:vulnerabilityId HTTP/1.1Host: demo.attackforge.comX-SSAPI-KEY: APIKeyContent-Type: application/jsonConnection: close
vulnerabilityId (string)
Identifier for the vulnerability.
Example:
PUT /api/ss/vulnerability-with-library/5f976f775345860a3491e075 HTTP/1.1
vulnerabilityLibraryId (string)
Identifier for the issue in the Vulnerability Library. Must be 15-digit number e.g. 203858903055049.
Example:
{"vulnerabilityLibraryId": "..."}
priority (string) (optional)
Priority for the vulnerability. Must be one of the following: Critical, High, Medium, Low, Info
Example:
{"priority": "Critical"}
status (string) (optional)
Status for the vulnerability. Must be one of the following: Open, Closed, Retest
Example:
{"status": "Closed"}
likelihood_of_exploitation (number) (optional)
Likelihood of Exploitation for the vulnerability. Must be a number between 1 to 10.
Example:
{"likelihood_of_exploitation": 10}
steps_to_reproduce (string) (optional)
Steps to Reproduce the vulnerability (POC).
Example:
{"steps_to_reproduce": "..."}
tags (array of strings) (optional)
Tags for the vulnerability.
Example:
{"tags": ["...", "...", "..."]}
notes (array of strings) (optional)
Notes for the vulnerability.
Example:
{"notes": ["...", "...", "..."]}
is_zeroday (boolean) (optional)
Whether vulnerability is a zeroday (0-day) or not.
Example:
{"is_zeroday": true}
is_visible (boolean) (optional)
Whether vulnerability is visible to the project team (true) or only team members with Edit access (false).
Example:
{"is_visible": true}
is_deleted (boolean) (optional)
Whether vulnerability is deleted or not.
Example:
{"is_deleted": false}
The following example is a cURL request to update a vulnerability by its identifier (Id) and an issue from the Vulnerability Library by its identifier (Id).
Include API Token instead of stars in 'X-SSAPI-KEY: ***************************************' parameter.
curl -X PUT 'https://demo.attackforge.com/api/ss/vulnerability-with-library/5f976f775345860a3491e075' -H 'Host: demo.attackforge.com' -H 'X-SSAPI-KEY: ***************************************' -H 'Content-Type: application/json' -H 'Connection: close' -d '{"vulnerabilityLibraryId": "212193650644186","priority": "Critical","status": "Open","likelihood_of_exploitation": 10,"steps_to_reproduce": "Lorem Ipsum...","tags": ["CWE-89", "Injection"],"notes": ["Lorem Ipsum...", "Lorem Ipsum..."],"is_zeroday": false,"is_visible": true,"is_deleted": false}'
Response contains a result object.
{"result": {"result": "Vulnerability Updated"}}