Versions Compared

Old Version 1

changes.mady.by.user Robert Shofner (Unlicensed)

Saved on

compared with

New Version Current

changes.mady.by.user Robert Shofner (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

/rest/{version}/vulnerabilities/{vulnerabilityIdvulnId}/setContested

Descriptor

Value

HTTP Method

POST

Description

Change Update the specified vulnerability to Exploitable's Contested status

Required Permission

Update Vulnerability Contested Status

Version Introduced2.7.2
Changes in 2.7.9Added a parameter 'contested' to control if you set the Contested status to True or False.
Changes in 2.8Added vulnerabilityIds parameter to allow for changing of multiple vulnerabilities at once.


Request Header Parameters

Parameter

Value

Required

Description

Accept

String

Yes

A value of ‘application/json’ must be provided.

Request POST Data Parameters

Parameter

Value

Required

Description

contested

Boolean

No

Provide 'true' to mark the vulnerability as Contested.  Provide 'false' to mark the vulnerability as Not Contested.

Defaults to 'true' if not provided.

vulnerabilityIdsIntegerYes**When used in ThreadFix 2.8 and above.
Provide a vulnerability ID to change the status for that vulnerability. Adding multiple vulnerabilityIds parameters allows
for changing of multiple vulnerabilities at once. 

Sample Calls: 

Version 2.7.2 to 2.7.9

Code Block
themeEclipse
curl --insecure -H 'Accept: application/json' -H "Authorization: APIKEY {apiKey}" -X POST --data 'contested=true' http://localhost:8080/threadfix/rest/latest/vulnerabilities/{vulnerabilityId}/setContested

Version 2.8 and higher

Code Block
themeEclipse
curl --insecure -H 'content-type: application/x-www-form-urlencoded' -H 'accept: application/json' -H 'Authorization: APIKEY {API KEY}' -X POST --data 'contested=true&vulnerabilityIds=16&vulnerabilityIds=17' http://localhost:8080/threadfix/rest/latest/vulnerabilities/setContested

Sample Output:

...