Can I search for specific software versions?

Yes, you can use the keyword parameter to search for specific software names and versions to find matching CVEs listed in the NVD.

How recent is the data provided by this skill?

The skill queries the NVD API 2.0 in real-time, ensuring you get the most up-to-date vulnerability information officially published by NIST.

Does this skill require an API key?

While it works with the public API at 5 requests per 30 seconds, providing a NIST NVD API key increases the limit to 50 requests per 30 seconds for intensive searches.

What severity levels are supported?

You can filter results by CRITICAL, HIGH, MEDIUM, and LOW severity levels based on the standard CVSS v3 base scores.

Can I find vulnerabilities for specific weakness types?

Yes, the skill supports CWE ID filtering, allowing you to find specific categories of flaws like SQL injection (CWE-89) or XSS (CWE-79).

NVD CVE Vulnerability Search

Name: NVD CVE Vulnerability Search
Author: naporin0624

bynaporin0624

•

Security & Testing

Searches the NIST National Vulnerability Database to identify security vulnerabilities and assess risk scores for software components.

The CVE Search skill integrates the NIST National Vulnerability Database (NVD) directly into the Claude Code environment, enabling developers and security researchers to perform real-time lookups of Common Vulnerabilities and Exposures (CVEs). It provides detailed metadata including CVSS severity scores, affected version ranges, and CWE classifications, allowing teams to conduct rapid security audits, prioritize patches for their tech stack, and identify potential high-value targets during penetration testing or bug bounty hunting.

Key Features

01CWE-specific identification to find common weakness patterns like XSS or SQLi

02Keyword-based search for specific software vendors and library versions

03Automatic rate-limit handling for both public and API-key authorized requests

042 GitHub stars

05Real-time NIST NVD API 2.0 integration for up-to-date vulnerability data

06Advanced filtering by CVSS v3 severity levels (CRITICAL, HIGH, MEDIUM, LOW)

Use Cases

01Conducting security audits on a project's tech stack and dependency tree

02Assessing the potential exploitability and bounty value of a discovered software version

03Monitoring recent vulnerabilities published within the last 30 to 90 days for specific keywords

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add naporin0624/claude-web-audit-plugins cve-search

For use in Claude.ai and ChatGPT

Download Skill