Search on Aqua Vulnerability Database is broken? Doesn't show React2Shell

[stefanlasiewski]

Question

I have a question about searching for CVEs on the Aqua Vulnerability Database.

The React2Shell vulnerability, CVE-2025-55182 with a CVSS score of 10.0 was announced 6 days ago on Dec 3.

Today, on Dec 9, he Aqua Vulnerability Database search box still doesn't show any results for CVE-2025-55182 and some folks may assume that Trivy doesn't know about the CVE. Instead, users need to dive into the big CVE lists such as https://avd.aquasec.com/nvd/2025/ which is a bit awkward. That page has 36000 CVEs and may be too big & slow for some browsers.

This is related to other user requests like #7623 & #1454

Can I request that the Search box on https://avd.aquasec.com/ get fixed? Is this the right place?

Target

None

Scanner

Vulnerability

Output Format

None

Mode

None

Operating System

No response

Version

No response

[simar7]

hi @stefanlasiewski - the page is available at https://avd.aquasec.com/nvd/2025/cve-2025-55182/

As for the search functionality, we currently have an open issue to fix the index aquasecurity/avd-generator#135