ModernPentestModernPentest
Vulnerabilities

Get vulnerability details

Returns detailed information about a specific vulnerability, including detection history, status transitions, and remediation guidance.

Required permission: vulnerabilities:read

GET
/api/v1/vulnerabilities/{vulnerabilityId}

Authorization

ApiKeyAuth
X-API-Key<token>

API key for authentication. Create API keys in Settings > API Keys. Format: mpt_<32 hex characters>

In: header

Path Parameters

vulnerabilityId*string

The vulnerability ID

Response Body

application/json

application/json

application/json

application/json

application/json

application/json

curl -X GET "https://api.modernpentest.com/api/v1/vulnerabilities/k57vuln123abc456"
{
  "id": "string",
  "title": "string",
  "description": "string",
  "severity": "critical",
  "status": "open",
  "owasp_category": "string",
  "cwe_id": "string",
  "vulnerability_type": "string",
  "application_id": "string",
  "application_name": "string",
  "first_detected_at": 0,
  "last_detected_at": 0,
  "fixed_at": 0,
  "remediated_at": 0,
  "detection_count": 0,
  "technical_context": {
    "endpoint": "string",
    "method": "string",
    "parameter": "string",
    "affected_component": "string"
  },
  "evidence": {
    "proof_of_concept": "string",
    "observed_behavior": "string",
    "vulnerable_endpoint": "string",
    "vulnerable_parameter": "string"
  },
  "business_impact": "string",
  "remediation": {
    "immediate_action": "string",
    "steps": [
      "string"
    ],
    "references": [
      "string"
    ]
  },
  "remediation_effort": {
    "estimated_hours": 0,
    "effort_level": "string",
    "complexity": "string"
  },
  "assigned_to": "string",
  "due_date": 0,
  "priority": "string",
  "exploit_available": true,
  "created_at": 0,
  "assigned_user": {
    "id": "string",
    "name": "string",
    "email": "string"
  },
  "detection_history": [
    {
      "id": "string",
      "scan_id": "string",
      "scan_completed_at": 0,
      "detection_state": "string",
      "matching_confidence": 0,
      "detected_at": 0
    }
  ],
  "status_history": [
    {
      "from_status": "string",
      "to_status": "string",
      "reason": "string",
      "triggered_at": 0
    }
  ]
}
{
  "error": {
    "code": "UNAUTHENTICATED",
    "message": "Invalid or missing API key",
    "timestamp": 1734567890000
  }
}
{
  "error": {
    "code": "FORBIDDEN",
    "message": "Missing required permission: applications:read",
    "timestamp": 1734567890000
  }
}
{
  "error": {
    "code": "NOT_FOUND",
    "message": "Application not found",
    "timestamp": 1734567890000
  }
}
{
  "error": {
    "code": "RATE_LIMIT_EXCEEDED",
    "message": "Rate limit exceeded. Try again in 45 seconds.",
    "timestamp": 1734567890000
  }
}
{
  "error": {
    "code": "INTERNAL_ERROR",
    "message": "An unexpected error occurred",
    "timestamp": 1734567890000
  }
}

Last updated: February 1, 2026

List vulnerabilities GET

Previous Page