Login is required. This is to prevent abuse. Direct links are provided once for automated downloading on the download page, however.
|CSV/MySQL Dumps/SQLite||XML Dumps|
The CSV Dumps include a SQL script to import the database into MySQL, though we offer a MySQL Dump in addition. We also offer a SQLite download.
The XML Dumps include no help. Our old XML perl import scripts are now deprecated.
|Open Source Vulnerability Database (OSVDB) License|
This is the Open Source Vulnerability Database (OSVDB) License which is operated under the Open Security Foundation (OSF), a 501(c)(3) not-for-profit entity. This license, where applicable, covers all OSVDB data that is distributed via any means, including the web site, API, email (e.g. Watch List), or data exports (e.g. CSV, SQLite, XML, etc.) under the OSVDB license provisions. This License is subject to change without notice.
1. All material is © Copyright, Open Security Foundation (OSF) / Open Source Vulnerability Database (OSVDB). All Rights Reserved.
2. The OSVDB contains contributions made by many individuals on behalf of OSF and OSVDB, both voluntarily and commercially retained, based on published vulnerability information. All contributions made by volunteers become the property of OSF / OSVDB.
3. If the OSVDB is the basis of, or integrated with, a non-profit, educational, or a commercially available product or service you MUST notify OSVDB by providing details on the usage and obtain permission or reach a licensing agreement prior to usage. This includes using OSVDB data for generating vulnerability statistics, security metrics , or any form of analytics used in a commercial manner (including 'Free' reports used for marketing). Usage requests can be submitted for approval to officers[at]opensecurityfoundation.org.
4. OSVDB must be given required credit if the data is used in any manner, both non-profit or commercially. The credit requirements are as follows:
5. Areas that require reference to the OSVDB as described in section 4 must display the following acknowledgement: "This product includes data from the Open Source Vulnerability Database (OSVDB.org) developed by the Open Security Foundation (OSF) and its partners."
6. If you wish to re-brand the OSVDB without meeting the requirements of Section 4, you must secure permission and agree to an alternate commercial license. Contact [email protected] for additional information. Linking to http://osvdb.org/ in any fashion is permitted and encouraged, and does not require any form of license.
7. Redistribution of the OSVDB can only be done under commercial license, with explicit permission by OSF or their commercial partners, and must retain this entire license document whether it is packaged in a distribution, posted on a website, or any other distribution method, unless explicitly stated otherwise in a licensing agreement.
8. NON TRANSFERABILITY: This License is non-transferable. This means that it applies to you and your company, not the people you distribute the product to in any fashion (e.g., customers or users). Customers or users are subject to the original OSVDB License and Copyright and must retain permission or their own license agreement for further redistribution.
9. CONTRIBUTIONS & MODIFICATIONS. OSVDB recognizes the huge benefit in open-source collaboration. OSVDB has gone to great pains to allow the OSVDB data to be used freely, up to a point, while retaining the right to ensure the proper credit is given the project and licensed accordingly. OSVDB believes the copyright and this license together represent a compromise heavily weighted to the benefit of the open-source community and requests that any entities using the OSVDB should consider becoming supporters of the project by contributing information to the database.
In order for OSVDB to maintain control over the database, it is a condition of the License that any modifications (i.e., edits, deletions, or contributions to the OSVDB) you suggest or submit be unencumbered. This means that any contributions or modifications fall under the license terms defined under OSVDB. Note that OSVDB assumes that any information submitted to us via email or committed by the project participants to be free of any encumbrance and which can be incorporated into our master database solely under our own copyright.
10. Trademarked names appear throughout the OSVDB. Rather than list the names and entities that own the trademarks or insert a trademark symbol with each mention of the trademarked name, the names are used only for editorial purposes and to the benefit of the trademark owner with no intention of infringing upon that trademark.
11. NO WARRANTY: THERE IS NO WARRANTY FOR THE OSVDB, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE OSVDB "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK OF USE OF THE OSVDB IS WITH YOU. SHOULD THE OSVDB PROVE FAULTY, INACCURATE, OR OTHERWISE UNACCEPTABLE YOU ASSUME THE COST OF ALL NECESSARY REPAIR OR CORRECTION.
12. DISCLAIMER OF LIABILITY: THE OSVDB IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THE OSVDB, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.