Search Tokens for Knowledgebase
You can use the search tokens available in the Knowledgebase tab and refine your search results. Click each token to learn more about it.
Use a boolean query to express your query using AND logic.
Example
Find QIDs with severity 4 and updated on a specified date
vulnDef.severity:4 AND vulnDef.updated: "2021-07-20"
Use a boolean query to express your query using NOT logic.
Example
Find scan schedules that don't have type DISCOVERY
NOT scan.schedule.type: "DISCOVERY"
Use a boolean query to express your query using OR logic.
Example
Find scan schedules with DISCOVERY scan type OR Active status
scan.schedule.type: "DISCOVERY" OR scan.schedule.status: "True"
Knowledge Base Tokens
Use these search tokens to find vulnerabilities with different criteria.
Use an integer value to find the vulnerability with the specified ID.
Examples
Find vulnerability with the given ID
vulnDef.id:10055
Use an integer value to find the vulnerability with the specified QID.
Example
Find vulnerability with the given QID
vulnDef.qid:11565
Use text values within quotes or backticks to search QIDs with the specified name.
Examples
Find the QID that contains the part of the given name
vulnDef.name:"campas cgi vulnerability"
Find the QID with the given name
vulnDef.name:`campas cgi vulnerability`
Use text value in quotes or backticks to search QIDs with the specified threat.
Examples
Find QIDs that contains the part of the given threat.
vulnDef.threat:"campas cgi"
Find QIDs with the given threat
vulnDef.threat:`campas cgi`
vulnDef.severityvulnDef.severity
Use an integer value to find vulnerabilities with the specified severity level. The severity level ranges between 1-5. The search includes potential and confirmed vulnerabilities with the specified severity.
Examples
Find vulnerabilities with severity 4
vulnDef.severity:4
Find vulnerabilities with severity greater than 3
vulnDef.severity>3
Find vulnerabilities with severity less than equal to 4
vulnDef.severity<=4
vulnDef.productvulnDef.product
Use text value within quotes or backticks to search the QID with the given product name.
Examples
Find QIDs that contains the part of the given product name
vulnDef.product:"zypper"
Find QID with the given product name
vulnDef.product:`zypper`
Use text value within quotes or backticks to search the QID with the given vendor name.
Examples
Find QID that contains the part of the vendor name
vulnDef.vendor:"suse"
Find QID with the given vendor name
vulnDef.vendor:`suse`
vulnDef.categoryvulnDef.category
Use text value in quotes or backticks to search the QIDs with the specified category.
Example
Find QIDs with the category that contains the part of the given name
vulnDef.category:"Web Application"
Find QIDs with the given category
vulnDef.category:`Web Application`
vulnDef.supportedByvulnDef.supportedBy
Use text value within quotes or backticks to search QIDs supported by the given applications.
Examples
Find QIDs supported by either of the specified applications
vulnDef.supportedBy:"WAS"
Find QIDs supported by the specified module
vulnDef.supportedBy:`VM, WAS`
vulnDef.updatedvulnDef.updated
Use a date range or specific date to find QIDs updated on a specific date or date range.
Examples
Find QIDs updated on specific date
vulnDef.updated:2021-06-15
Find QIDs updated between March 2023 to July 2023
vulnDef.updated:[2023-03-01 .. 2023-07-31]
Use an integer value to search QIDs matching a specific CVE ID.
Example
Find QIDs matching a specific CVEID
vulnDef.cveIds:CVE-2015-2838
Use an integer to search QIDs with a given CWE Id associated with it.
Example
Find QIDs matching a specific CWE ID
vulnDef.cweIds:451
vulnDef.owaspTopTen.codevulnDef.owaspTopTen.code
Select an OWASP top ten code from the suggestions to search QIDs based on it .
Example
Find QID supported by OWASP Top Ten category code A07
vulnDef.owaspTopTen.code:A07
vulnDef.owaspTopTen.namevulnDef.owaspTopTen.name
Use values within quotes or backticks to search QIDs with the specified OWASP top ten category name.
Examples
Search QIDs that contains the part of OWASP name.
vulnDef.owaspTopTen.name:"Cryptographic Failures"
Search QID supported by specific OWASP name.
vulnDef.owaspTopTen.name:`Cryptographic Failures`
vulnDef.owaspApiTopTen.codevulnDef.owaspApiTopTen.code
Select an OWASP API Top Ten code from the suggestions to search the QIDs based on it.
Example
Find QIDs that have OWASP API security category as API05.
vulnDef.owaspTopTen.code:API05
vulnDef.owaspApiTopTen.namevulnDef.owaspApiTopTen.name
Use values within quotes or backticks to search QIDs with given OWASP API top ten 2023 category name.
Examples
Search QIDs that contains the part of the OWASP API Top Ten category name.
vulnDef.owaspApiTopTen.name:"Unrestricted Access to Sensitive Business Flows"
Search QID supported by specific OWASP API Top Ten category name.
vulnDef.owaspApiTopTen.name:`API6:2023 Unrestricted Access to Sensitive Business Flows`
vulnDef.cvss3Info.baseScorevulnDef.cvss3Info.baseScore
Use an integer value to search QIDs with the specified CVSS3 base score value.
Example
Find QIDs with the CVSS V3 base score as 6.1
vulnDef.cvss3Info.baseScore:6.1
Find QIDs with the CVSS V3 base score less than 6.1
vulnDef.cvss3Info.baseScore<6.1
Find QIDs with the CVSS V3 base score greater than 6.1
vulnDef.cvss3Info.baseScore>6.1
vulnDef.cvss3Info.temporalScorevulnDef.cvss3Info.temporalScore
Use an integer value to search QIDs with the specified CVSS3 temporal score value.
Example
Find QIDs with CVSS V3 temporal score as 5.8
vulnDef.cvss3Info.temporalScore:5.8
Find QIDs with CVSS V3 temporal score less than 5.8
vulnDef.cvss3Info.temporalScore<5.8
Find QIDs with CVSS V3 temporal score greater than 5.8
vulnDef.cvss3Info.temporalScore>5.8
Select one of the suggested vulnerability type values to search the QIDs based on it.
Example
Find QIDs that have confirmed vulnerabilities.
vulnDef.type:CONFIRMED_VULNERABILITY
vulnDef.discoveryTypevulnDef.discoveryType
Select one of the suggested discovery type values to search the QIDs based on it. Valid values - AUTHENTICATED, REMOTE, REMOTE_AUTHENTICATED
Example
Find QIDs that has remotely discovered vulnerabilities
vulnDef.discoveryType:REMOTE
vulnDef.authenticationTypevulnDef.authenticationType
Select one of the suggested authentication type values to search the QIDs based on it.
Example
Find vulnerabilities that uses HTTP_BASIC authentication
vulnDef.authenticationType:HTTP_BASIC
vulnDef.malware.namevulnDef.malware.name
Use the text value within quotes or backtics to search the QIDs with given malware name.
Example
Find vulnerabilities that contains the part of given malware name.
vulnDef.malware.name:"shell"
Find vulnerabilities that contains the given malware name.
vulnDef.malware.name:`shell`
vulnDef.malware.aliasesvulnDef.malware.aliases
Use the text value within quotes or backtics to search the QIDs with given malware aliases.
Example
Find vulnerabilities that contains the part of malware aliase name.
vulnDef.malware.aliases:"mitchel"
Find vulnerabilities with the given of malware aliase name.
vulnDef.malware.aliases:`mitchel`
vulnDef.malware.typevulnDef.malware.type
Use the text value within quotes or backtics to search the QIDs with given malware type.
Example
Find QIDs that contains part of malware type.
vulnDef.malware.type:"trojan"
Find QIDs with the given malware type.
vulnDef.malware.type:`trojan`
vulnDef.malware.platformvulnDef.malware.platform
Use the text value within quotes or backtics to search the QIDs with given platform type.
Example
Find QIDs that contains the part of given malware platform name.
vulnDef.malware.platform:"win32"
Find QIDs with the given malware platform name.
vulnDef.malware.platform:'win32`
vulnDef.malware.vendorvulnDef.malware.vendor
Use the text value within quotes or backtics to search the QIDs with given malware vendor.
Example
Find QIDs that contains part of given malware vendor name.
vulnDef.malware.vendor:"qualys"
Find QIDs with the given malware vendor name.
vulnDef.malware.vendor:`qualys`
vulnDef.patchAvailablevulnDef.patchAvailable
Select the boolean values (true/false) to search QIDs based on patch availability.
Example
Find QIDs for which the patches are available.
vulnDef.patchAvailable:true
Find QIDs for which the patches are not available.
vulnDef.patchAvailable:false
vulnDef.exploitAvailablevulnDef.exploitAvailable
Select the boolean values (true/false) to search QIDs based on exploitable vulnerabilities.
Example
Find QIDs that contains the exploitable vulnerabilities.
vulnDef.exploitAvailable:true
Find QIDs that do not contains the exploitable vulnerabilities.
vulnDef.exploitAvailable:false
vulnDef.malwareAvailablevulnDef.malwareAvailable
Select the boolean values (true/false) to search QIDs based on malware presence.
Example
Find QIDs that contains malware.
vulnDef.malwareAvailable:true
Find QIDs that do not contains malware.
vulnDef.malwareAvailable:false
vulnDef.cvss3Info.attackVectorvulnDef.cvss3Info.attackVector
Select one of the suggested values to search QIDs with given CVSS3 attack vector.
Example
Find QIDs that contains LOCAL_ACCESS type CVSS3 vector.
vulnDef.cvss3Info.attackVector:LOCAL_ACCESS
vulnDef.complianceTypesvulnDef.complianceTypes
Select one of the suggested values to search QIDs with given compliance type: COBIT, GLBA, HIPAA, PCI, SOX.
Example
Find QIDs that uses PCI Compliance.
vulnDef.complianceTypes:PCI
vulnDef.complianceSectionvulnDef.complianceSection
Select one of the suggested values to search QIDs with given compliance section.
Example
Find QIDs that comply with DS5 section.
vulnDef.complianceSection:DS5
vulnDef.complianceDescriptionvulnDef.complianceDescription
Use the text value in quotes or backticks to search QIDs with given description.
Example
Find QIDs that contains the part of compliance description.
vulnDef.complianceDescription:"virus scanning solution"
Find QIDs that with given compliance description.
vulnDef.complianceDescription:`virus scanning solution`
vulnDef.listInclusionvulnDef.listInclusion
Select one of the suggested inclusion list values to search QIDs based on it.
Example
Find QIDs included in QUALYS_EXT_10 list.
vulnDef.listInclusion:QUALYS_EXT_10
vulnDef.bugtraqIdsvulnDef.bugtraqIds
Use an integer value to search QIDs based on Bugtraq ID.
Example
Find QIDs with given Bugtraq ID.
vulnDef.bugtraqIds:73311
Find QIDs with multiple Bugtraq IDs.
vulnDef.bugtraqIds:[73311, 109152]
Select true | false values to find customized or default WAS QIDs.
Examples
Find customized QIDs.
vulnDef.custom:true
Find default QIDs.
vulnDef.custom:false
vulnDef.vendorRefvulnDef.vendorRef
Use the text values in backticks or quotes to find QIDs with vendor reference values.
Example
Find the QIDs that matches the part of specified vendor reference values.
vulnDef.vendorRef: "Test"
Find the QIDs that exactly matches the specified vendor reference values.
vulnDef.vendorRef: `Test`