Skip to main content

Introduction

wtfisthiscve is a tool that explains CVE (Common Vulnerabilities and Exposures) security vulnerabilities in plain English.

What is it?

When you encounter a CVE ID like CVE-2021-44228, you can use wtfisthiscve to get:

  • Plain English summary - What the vulnerability actually is
  • Am I affected? - Which software/versions are impacted
  • How to fix - Remediation steps
  • References - Links to official advisories and patches

How to use it

Web Interface

Visit wtfisthiscve.com and enter a CVE ID in the search box.

API

curl -H "X-API-Key: your-api-key" \
  https://wtfisthiscve.com/api/cve/CVE-2021-44228

CLI

wtf CVE-2021-44228

Getting an API Key

  1. Go to wtfisthiscve.com/auth/github
  2. Sign in with GitHub
  3. Copy your API key from the dashboard

Data Source

CVE data is sourced from the National Vulnerability Database (NVD). Explanations are generated using AI to make technical details more accessible.