From c211e518cc2aca289537742e97539b8fb969eca1 Mon Sep 17 00:00:00 2001
From: cn-kali-team <kali-team@qq.com>
Date: Wed, 21 Feb 2024 13:20:00 +0800
Subject: [PATCH] =?UTF-8?q?=E5=B0=86exp=E5=90=88=E5=B9=B6=E5=88=B0kb?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 helper/src/cli.rs                             |  12 +-
 helper/src/cve/mod.rs                         |   6 +-
 helper/src/exp/mod.rs                         | 576 -----------------
 helper/src/kb/mod.rs                          | 610 +++++++++++++++++-
 helper/src/lib.rs                             |  11 +-
 nvd-cvss/src/v2/access_complexity.rs          |  12 +-
 nvd-cvss/src/v2/authentication.rs             |  16 +-
 nvd-cvss/src/v3/attack_complexity.rs          |  16 +-
 nvd-cvss/src/v3/attack_vector.rs              |  16 +-
 nvd-cvss/src/v3/impact_metrics.rs             |  15 +-
 nvd-cvss/src/v3/mod.rs                        |  10 +-
 nvd-cvss/src/v3/user_interaction.rs           |  12 +-
 nvd-cvss/src/v4/attack_complexity.rs          |  20 +-
 nvd-cvss/src/v4/attack_requirements.rs        |  18 +-
 nvd-cvss/src/v4/attack_vector.rs              |  16 +-
 nvd-cvss/src/v4/mod.rs                        |  14 +-
 nvd-cvss/src/v4/subsequent_impact_metrics.rs  |  17 +-
 nvd-cvss/src/v4/user_interaction.rs           |  10 +-
 nvd-cvss/src/v4/vulnerable_impact_metrics.rs  |  15 +-
 .../{cve_exploit => cve_knowledge_base}/db.rs |  86 +--
 .../mod.rs                                    |  17 +-
 nvd-model/src/exploit/db.rs                   | 195 ------
 nvd-model/src/exploit/mod.rs                  |  43 --
 nvd-model/src/knowledge_base/db.rs            |  72 ++-
 nvd-model/src/knowledge_base/mod.rs           |  12 +-
 nvd-model/src/lib.rs                          |   5 +-
 nvd-model/src/schema.rs                       |  35 +-
 nvd-server/src/api/exploit_api.rs             |  19 -
 nvd-server/src/api/mod.rs                     |   7 +-
 nvd-yew/src/component/exp_query.rs            | 126 ----
 nvd-yew/src/component/exp_row.rs              | 100 ---
 nvd-yew/src/component/exploit.rs              | 106 ---
 nvd-yew/src/component/kb_query.rs             |   9 +-
 nvd-yew/src/component/kb_row.rs               |  39 +-
 nvd-yew/src/component/knowledge_base.rs       |   6 +-
 nvd-yew/src/component/mod.rs                  |  12 +-
 nvd-yew/src/layout/nav.rs                     |   7 -
 nvd-yew/src/routes/cve.rs                     |  14 +-
 nvd-yew/src/routes/exp.rs                     | 188 ------
 nvd-yew/src/routes/kb.rs                      |   9 +-
 nvd-yew/src/routes/mod.rs                     |  11 +-
 nvd-yew/src/services/exp.rs                   |  10 -
 nvd-yew/src/services/mod.rs                   |   1 -
 43 files changed, 897 insertions(+), 1654 deletions(-)
 delete mode 100644 helper/src/exp/mod.rs
 rename nvd-model/src/{cve_exploit => cve_knowledge_base}/db.rs (58%)
 rename nvd-model/src/{cve_exploit => cve_knowledge_base}/mod.rs (52%)
 delete mode 100644 nvd-model/src/exploit/db.rs
 delete mode 100644 nvd-model/src/exploit/mod.rs
 delete mode 100644 nvd-server/src/api/exploit_api.rs
 delete mode 100644 nvd-yew/src/component/exp_query.rs
 delete mode 100644 nvd-yew/src/component/exp_row.rs
 delete mode 100644 nvd-yew/src/component/exploit.rs
 delete mode 100644 nvd-yew/src/routes/exp.rs
 delete mode 100644 nvd-yew/src/services/exp.rs

diff --git a/helper/src/cli.rs b/helper/src/cli.rs
index d61c690..14e6101 100644
--- a/helper/src/cli.rs
+++ b/helper/src/cli.rs
@@ -48,14 +48,14 @@ pub struct CPECommand {
 }
 
 #[derive(FromArgs, PartialEq, Debug)]
-#[argh(description = "exp helper")]
-#[argh(subcommand, name = "exp")]
+#[argh(description = "kb helper")]
+#[argh(subcommand, name = "kb")]
 pub struct EXPCommand {
-  #[argh(option, description = "import exp from files_exploits.csv")]
+  #[argh(option, description = "import kb from files_exploits.csv")]
   pub path: Option<PathBuf>,
-  #[argh(option, description = "import exp from nuclei-templates path")]
+  #[argh(option, description = "import kb from nuclei-templates path")]
   pub template: Option<PathBuf>,
-  #[argh(switch, description = "update exp from nuclei-templates")]
+  #[argh(switch, description = "update kb from nuclei-templates")]
   pub api: bool,
 }
 
@@ -71,7 +71,7 @@ pub struct KBCommand {
 #[argh(description = "sync helper")]
 #[argh(subcommand, name = "sync")]
 pub struct SyncCommand {
-  #[argh(switch, description = "sync exp")]
+  #[argh(switch, description = "sync kb")]
   pub exp: bool,
   #[argh(switch, description = "sync cve")]
   pub cve: bool,
diff --git a/helper/src/cve/mod.rs b/helper/src/cve/mod.rs
index 50ee3dd..a2c06ec 100644
--- a/helper/src/cve/mod.rs
+++ b/helper/src/cve/mod.rs
@@ -6,18 +6,18 @@ use std::path::PathBuf;
 use std::str::FromStr;
 
 use diesel::mysql::MysqlConnection;
+use nvd_api::ApiVersion;
 use nvd_api::pagination::Object;
 use nvd_api::v2::vulnerabilities::CveParameters;
-use nvd_api::ApiVersion;
 
 use nvd_cves::v4::{CVEContainer, CVEItem};
 use nvd_model::cve::{CreateCve, Cve};
 use nvd_model::error::DBResult;
 use nvd_model::types::AnyValue;
 
-use crate::cpe::{del_expire_product, import_vendor_product_to_db};
-use crate::exp::associate_cve_and_exploit;
 use crate::{create_cve_product, init_db_pool};
+use crate::cpe::{del_expire_product, import_vendor_product_to_db};
+use crate::kb::associate_cve_and_exploit;
 
 pub(crate) async fn async_cve(param: CveParameters) {
   let connection_pool = init_db_pool();
diff --git a/helper/src/exp/mod.rs b/helper/src/exp/mod.rs
deleted file mode 100644
index 7fcbb3f..0000000
--- a/helper/src/exp/mod.rs
+++ /dev/null
@@ -1,576 +0,0 @@
-use std::collections::HashSet;
-use std::ffi::OsStr;
-use std::fmt;
-use std::fs::File;
-use std::marker::PhantomData;
-use std::ops::DerefMut;
-use std::path::{Path, PathBuf};
-use std::sync::Arc;
-
-use chrono::{DateTime, Duration, NaiveDateTime, Utc};
-use diesel::MysqlConnection;
-use octocrab::models::repos::{DiffEntryStatus, RepoCommit};
-use octocrab::{Octocrab, Page};
-use reqwest::header;
-use serde::{de, Deserialize, Deserializer, Serialize};
-
-use nvd_model::cve_exploit::db::CreateCveExploit;
-use nvd_model::cve_exploit::CveExploit;
-use nvd_model::error::DBResult;
-use nvd_model::exploit::db::{CreateExploit, ExploitSource};
-use nvd_model::exploit::Exploit;
-use nvd_model::types::{AnyValue, MetaData};
-
-use crate::{init_db_pool, Connection};
-
-mod date_format {
-  use chrono::{NaiveDate, NaiveDateTime, Utc};
-  use serde::{self, Deserialize, Deserializer, Serializer};
-
-  pub(crate) const FORMAT: &str = "%Y-%m-%d";
-
-  pub fn serialize<S>(date: &NaiveDateTime, serializer: S) -> Result<S::Ok, S::Error>
-  where
-    S: Serializer,
-  {
-    let s = date.to_string();
-    serializer.serialize_str(&s)
-  }
-
-  pub fn deserialize<'de, D>(deserializer: D) -> Result<NaiveDateTime, D::Error>
-  where
-    D: Deserializer<'de>,
-  {
-    let s = String::deserialize(deserializer)?;
-    if s.is_empty() {
-      return Ok(Utc::now().naive_local());
-    }
-    match NaiveDate::parse_from_str(&s, FORMAT) {
-      Ok(naive_datetime) => Ok(
-        naive_datetime
-          .and_hms_opt(0, 0, 0)
-          .unwrap_or(Utc::now().naive_local()),
-      ),
-      Err(err) => Err(serde::de::Error::custom(err)),
-    }
-  }
-}
-
-#[derive(Debug, Deserialize, Serialize, Clone)]
-struct ExploitDB {
-  id: u32,
-  file: String,
-  description: String,
-  #[serde(with = "date_format")]
-  date_published: NaiveDateTime,
-  author: String,
-  r#type: String,
-  platform: String,
-  port: Option<u16>,
-  #[serde(with = "date_format")]
-  date_added: NaiveDateTime,
-  #[serde(with = "date_format")]
-  date_updated: NaiveDateTime,
-  verified: u8,
-  codes: Option<String>,
-  tags: Option<String>,
-  aliases: Option<String>,
-  screenshot_url: Option<String>,
-  application_url: Option<String>,
-  source_url: Option<String>,
-}
-
-impl ExploitDB {
-  fn from_html(html: &str, item: &Item) -> Self {
-    let id = item.link.rsplit_once('/').unwrap_or_default().1;
-    let v = html.contains("<i class=\"mdi mdi-24px mdi-check\"");
-    let mut exp = ExploitDB {
-      id: id.parse().unwrap_or_default(),
-      file: "".to_string(),
-      description: item.description.clone(),
-      date_published: item.published,
-      author: "".to_string(),
-      r#type: "".to_string(),
-      platform: "".to_string(),
-      port: None,
-      date_added: Default::default(),
-      date_updated: item.published,
-      verified: v as u8,
-      codes: None,
-      tags: None,
-      aliases: None,
-      screenshot_url: None,
-      application_url: None,
-      source_url: None,
-    };
-    for line in html.lines() {
-      if line.contains("<a href=\"https://nvd.nist.gov/vuln/detail/CVE-") {
-        if let Some(u) = line.trim().trim_end_matches('"').strip_prefix("<a href=\"") {
-          if let Some((_, id)) = u.rsplit_once('/') {
-            exp.codes = Some(id.to_string());
-          };
-        };
-      } else if line.contains("<a href=\"/?platform=") {
-        if let Some(platform) = line
-          .trim()
-          .trim_end_matches("\">")
-          .strip_prefix("<a href=\"/?platform=")
-        {
-          exp.platform = platform.to_string();
-        };
-      } else if line.contains("<a href=\"/?type=") {
-        if let Some(t) = line
-          .trim()
-          .trim_end_matches("\">")
-          .strip_prefix("<a href=\"/?type=")
-        {
-          exp.r#type = t.to_string();
-        };
-      } else if line.contains("<pre><code class=\"language-") {
-        if let Some(u) = line
-          .trim()
-          .trim_end_matches('"')
-          .strip_prefix("<pre><code class=\"language-")
-        {
-          if let Some((l, _)) = u.split_once('"') {
-            exp.file = format!(
-              "exploits/{}/{}/{}.{}",
-              exp.platform,
-              exp.r#type,
-              id,
-              l.to_lowercase()
-            );
-          };
-        };
-      }
-    }
-    exp
-  }
-}
-
-pub fn create_or_update_exploit(
-  connection: &mut MysqlConnection,
-  exploit_item: CreateExploit,
-  cve_id: Option<String>,
-) -> DBResult<Exploit> {
-  match Exploit::create_or_update(connection, &exploit_item) {
-    Ok(exp) => {
-      if let Some(cve_id) = cve_id {
-        let new_cve_exp = CreateCveExploit {
-          cve_id,
-          exploit_id: exp.id.clone(),
-        };
-        if let Err(err) = CveExploit::create(connection, &new_cve_exp) {
-          println!("漏洞利用关联CVE失败：{:?}", err);
-        }
-      }
-      println!(
-        "从{}同步exploit: {}",
-        exploit_item.source, exploit_item.path
-      );
-      Ok(exp)
-    }
-    Err(err) => Err(err),
-  }
-}
-
-pub fn with_archive_exploit(path: PathBuf) {
-  let file = File::open(path).unwrap();
-  let mut rdr = csv::Reader::from_reader(file);
-  let connection_pool = init_db_pool();
-  for result in rdr.deserialize() {
-    // Notice that we need to provide a type hint for automatic
-    // deserialization.
-    let exploit_item: ExploitDB = result.unwrap();
-    let meta = if let Some(code) = exploit_item.codes {
-      MetaData::from_hashset(
-        "tags",
-        code
-          .split(';')
-          .map(|s| s.to_string())
-          .collect::<HashSet<String>>(),
-      )
-    } else {
-      MetaData::default()
-    };
-    let new_exp = CreateExploit {
-      id: uuid::Uuid::new_v4().as_bytes().to_vec(),
-      name: exploit_item.id.to_string(),
-      description: exploit_item.description,
-      source: ExploitSource::ExploitDb.to_string(),
-      path: exploit_item.file,
-      meta: AnyValue::new(meta.clone()),
-      verified: exploit_item.verified,
-      created_at: exploit_item.date_published,
-      updated_at: exploit_item.date_updated,
-    };
-    if let Some(code_list) = meta.get_hashset("tags") {
-      for c in code_list {
-        if c.starts_with("CVE-") {
-          // 是CVE
-          if let Err(err) = create_or_update_exploit(
-            connection_pool.get().unwrap().deref_mut(),
-            new_exp.clone(),
-            Some(c.clone()),
-          ) {
-            println!("是CVE： import exploit err: {:?}", err);
-          }
-        } else {
-          // code不为空，但是不是cve
-          if let Err(err) = create_or_update_exploit(
-            connection_pool.get().unwrap().deref_mut(),
-            new_exp.clone(),
-            None,
-          ) {
-            println!("code不为空，但是不是cve： import exploit err: {:?}", err);
-          }
-        }
-      }
-    } else {
-      // code为空
-      if let Err(err) = create_or_update_exploit(
-        connection_pool.get().unwrap().deref_mut(),
-        new_exp.clone(),
-        None,
-      ) {
-        println!("code为空：import exploit err: {:?}", err);
-      }
-    }
-    // break;
-  }
-}
-
-pub async fn update_from_github() {
-  let connection_pool = init_db_pool();
-  let commit_api = GitHubCommit::new("projectdiscovery", "nuclei-templates");
-  commit_api
-    .update(connection_pool.get().unwrap().deref_mut())
-    .await;
-}
-
-/// 字符串转set
-fn string_to_hashset<'de, D>(deserializer: D) -> Result<HashSet<String>, D::Error>
-where
-  D: Deserializer<'de>,
-{
-  struct StringToHashSet(PhantomData<HashSet<String>>);
-  impl<'de> de::Visitor<'de> for StringToHashSet {
-    type Value = HashSet<String>;
-    fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
-      formatter.write_str("string or list of strings")
-    }
-    fn visit_str<E>(self, value: &str) -> Result<Self::Value, E>
-    where
-      E: de::Error,
-    {
-      let name: Vec<String> = value
-        .split(',')
-        .filter(|s| !s.starts_with("cve"))
-        .map(String::from)
-        .collect();
-      Ok(HashSet::from_iter(name))
-    }
-    fn visit_seq<S>(self, visitor: S) -> Result<Self::Value, S::Error>
-    where
-      S: de::SeqAccess<'de>,
-    {
-      Deserialize::deserialize(de::value::SeqAccessDeserializer::new(visitor))
-    }
-  }
-  deserializer.deserialize_any(StringToHashSet(PhantomData))
-}
-
-#[derive(Debug, Serialize, Deserialize, Clone, Default)]
-struct Template {
-  id: String,
-  info: Info,
-}
-
-#[derive(Debug, Serialize, Deserialize, Clone, Default)]
-struct Info {
-  name: String,
-  description: String,
-  classification: Option<Classification>,
-  #[serde(deserialize_with = "string_to_hashset")]
-  tags: HashSet<String>,
-}
-
-#[derive(Debug, Serialize, Deserialize, Clone, Default)]
-struct Classification {
-  #[serde(rename = "cve-id")]
-  cve_id: Option<String>,
-  cpe: Option<String>,
-}
-
-pub struct GitHubCommit {
-  owner: String,
-  repo: String,
-  api: Arc<Octocrab>,
-}
-
-fn get_yaml_file(path: PathBuf) -> Vec<PathBuf> {
-  let mut yaml_file_list: Vec<PathBuf> = Vec::new();
-  if let Ok(read_dir) = Path::new(&path).read_dir() {
-    for element in read_dir.filter_map(|res| res.ok()) {
-      if element.path().is_dir() {
-        yaml_file_list.extend(get_yaml_file(element.path()));
-      }
-      if element.path().is_file() {
-        yaml_file_list.push(element.path());
-      }
-    }
-  }
-  yaml_file_list
-}
-
-pub fn import_from_nuclei_templates_path(path: PathBuf) {
-  let mut connection_pool = init_db_pool().get().unwrap();
-  let conn = connection_pool.deref_mut();
-  let cve_path = path.join("http").join("cves");
-  let yaml_paths = get_yaml_file(cve_path);
-  for yaml_path in yaml_paths {
-    if let Ok(f) = File::open(&yaml_path) {
-      let template: Template = serde_yaml::from_reader(f).unwrap();
-      let meta = MetaData::from_hashset("tags", template.info.tags);
-      let new_exp = CreateExploit {
-        id: uuid::Uuid::new_v4().as_bytes().to_vec(),
-        name: template.id.clone(),
-        description: template.info.description,
-        source: ExploitSource::NucleiTemplates.to_string(),
-        path: yaml_path
-          .strip_prefix(&path)
-          .unwrap()
-          .to_string_lossy()
-          .to_string(),
-        meta: AnyValue::new(meta),
-        verified: 1,
-        created_at: Utc::now().naive_utc(),
-        updated_at: Utc::now().naive_utc(),
-      };
-      if let Err(err) = create_or_update_exploit(conn, new_exp, Some(template.id)) {
-        println!("import nuclei exploit err: {:?}", err);
-      }
-    }
-  }
-}
-
-impl GitHubCommit {
-  pub fn new(owner: impl Into<String>, repo: impl Into<String>) -> Self {
-    Self {
-      owner: owner.into(),
-      repo: repo.into(),
-      api: octocrab::instance(),
-    }
-  }
-  async fn get_commit_list(&self) -> octocrab::Result<Page<RepoCommit>> {
-    let now = Utc::now();
-    let three_hours = now - Duration::hours(3);
-    println!(
-      "开始更新从{}到{}exp",
-      three_hours.to_rfc3339(),
-      now.to_rfc3339()
-    );
-    self
-      .api
-      .repos(&self.owner, &self.repo)
-      .list_commits()
-      .path("http/cves")
-      .since(three_hours)
-      .send()
-      .await
-  }
-  async fn get_commit(&self, sha: String) -> octocrab::Result<RepoCommit> {
-    self.api.commits(&self.owner, &self.repo).get(sha).await
-  }
-  async fn get_template(&self, path: String) -> octocrab::Result<Template> {
-    let content = self
-      .api
-      .repos(&self.owner, &self.repo)
-      .get_content()
-      .path(&path)
-      .send()
-      .await?;
-    let mut code = String::new();
-    for c in content.items {
-      code.push_str(&c.decoded_content().unwrap_or_default())
-    }
-    let template: Template = serde_yaml::from_str(&code).unwrap_or_default();
-    Ok(template)
-  }
-
-  pub async fn update(&self, conn: &mut Connection) {
-    let list_commits = self.get_commit_list().await;
-    let mut cache_map = HashSet::new();
-    if let Ok(list_commits) = list_commits {
-      for commits in list_commits {
-        if let Ok(commit) = self.get_commit(commits.sha).await {
-          for file in commit.files.clone().unwrap_or_default() {
-            if cache_map.contains(&format!("{:?}_{}", file.status, file.filename)) {
-              continue;
-            }
-            cache_map.insert(format!("{:?}_{}", file.status, file.filename));
-            let path = file.filename.clone();
-            let meta = MetaData::default();
-            let cve = Path::new(&file.filename)
-              .file_name()
-              .unwrap_or_default()
-              .to_string_lossy()
-              .to_string()
-              .strip_suffix(&format!(
-                ".{}",
-                Path::new(&file.filename)
-                  .extension()
-                  .unwrap_or(OsStr::new(".yaml"))
-                  .to_string_lossy()
-                  .to_string()
-                  .as_str()
-              ))
-              .unwrap_or_default()
-              .to_string();
-            if !cve.starts_with("CVE-") {
-              break;
-            }
-            match file.status {
-              DiffEntryStatus::Added | DiffEntryStatus::Modified => {
-                let template = self.get_template(file.filename).await.unwrap_or_default();
-                if !template.id.starts_with("CVE-") {
-                  break;
-                }
-                let new_exp = CreateExploit {
-                  id: uuid::Uuid::new_v4().as_bytes().to_vec(),
-                  name: template.id.clone(),
-                  description: template.info.description,
-                  source: ExploitSource::NucleiTemplates.to_string(),
-                  path,
-                  meta: AnyValue::new(meta),
-                  verified: 1,
-                  created_at: Utc::now().naive_utc(),
-                  updated_at: Utc::now().naive_utc(),
-                };
-                if let Err(err) = create_or_update_exploit(conn, new_exp, Some(template.id)) {
-                  println!("import nuclei exploit err: {:?}", err);
-                }
-              }
-              DiffEntryStatus::Removed => {
-                if let Err(err) = Exploit::delete(conn, &cve, ExploitSource::NucleiTemplates) {
-                  println!("删除 exploit err: {:?}", err);
-                }
-              }
-              DiffEntryStatus::Renamed => {}
-              DiffEntryStatus::Copied => {}
-              DiffEntryStatus::Changed => {}
-              DiffEntryStatus::Unchanged => {}
-              _ => {}
-            }
-          }
-        }
-      }
-    }
-  }
-}
-
-#[derive(Deserialize, Serialize, Debug, Clone)]
-#[serde(rename_all = "kebab-case")]
-struct Rss {
-  channel: Channel,
-}
-
-#[derive(Deserialize, Serialize, Debug, Clone)]
-#[serde(rename_all = "kebab-case")]
-struct Channel {
-  item: Vec<Item>,
-}
-
-#[derive(Deserialize, Serialize, Debug, Clone)]
-#[serde(rename_all = "kebab-case")]
-struct Item {
-  title: String,
-  link: String,
-  description: String,
-  #[serde(alias = "pubDate", deserialize_with = "rfc3339_deserialize")]
-  published: NaiveDateTime,
-}
-
-pub fn rfc3339_deserialize<'de, D>(deserializer: D) -> Result<NaiveDateTime, D::Error>
-where
-  D: Deserializer<'de>,
-{
-  let s = String::deserialize(deserializer)?;
-  if s.is_empty() {
-    return Ok(Utc::now().naive_local());
-  }
-  match DateTime::parse_from_rfc2822(&s) {
-    Ok(naive_datetime) => Ok(naive_datetime.naive_local()),
-    Err(err) => Err(serde::de::Error::custom(err)),
-  }
-}
-
-async fn get_info_from_exploit_url(conn: &mut Connection, item: &Item) {
-  let mut headers = header::HeaderMap::new();
-  let ua = "Mozilla/5.0 (X11; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0";
-  headers.insert(header::USER_AGENT, header::HeaderValue::from_static(ua));
-  if let Ok(resp) = reqwest::ClientBuilder::new()
-    .default_headers(headers)
-    .build()
-    .unwrap_or_default()
-    .get(&item.link)
-    .send()
-    .await
-  {
-    let html = resp.text().await.unwrap_or_default();
-    let exploit_item = ExploitDB::from_html(&html, item);
-    let meta = MetaData::default();
-    let new_exp = CreateExploit {
-      id: uuid::Uuid::new_v4().as_bytes().to_vec(),
-      name: exploit_item.id.to_string(),
-      description: exploit_item.description,
-      source: ExploitSource::ExploitDb.to_string(),
-      path: exploit_item.file,
-      meta: AnyValue::new(meta.clone()),
-      verified: exploit_item.verified,
-      created_at: exploit_item.date_published,
-      updated_at: exploit_item.date_updated,
-    };
-    if !new_exp.path.is_empty()
-      && exploit_item.id != 0
-      && !exploit_item.r#type.is_empty()
-      && !exploit_item.platform.is_empty()
-    {
-      if let Err(err) = create_or_update_exploit(conn, new_exp, exploit_item.codes) {
-        println!("import nuclei exploit err: {:?}", err);
-      }
-    }
-  }
-}
-
-pub async fn update_from_rss() {
-  let connection_pool = init_db_pool();
-  if let Ok(resp) = reqwest::get("https://www.exploit-db.com/rss.xml").await {
-    let b = resp.bytes().await.unwrap_or_default();
-    let s = String::from_utf8_lossy(&b);
-    let rss: Rss = quick_xml::de::from_str(&s).unwrap();
-    for item in rss.channel.item {
-      // 发布时间小于三天前跳过更新
-      if item.published < (Utc::now() - Duration::days(3)).naive_utc() {
-        continue;
-      }
-      get_info_from_exploit_url(connection_pool.get().unwrap().deref_mut(), &item).await;
-    }
-  }
-}
-
-// 绑定cve和exploit，也许是先有了exp，cve还没更新进来
-pub fn associate_cve_and_exploit(conn: &mut Connection, id: &str) {
-  // 查出有当前cve的exp，然后创建绑定关系
-  if let Ok(exps) = Exploit::query_by_cve(conn, id) {
-    for exp in exps {
-      let new_cve_exp = CreateCveExploit {
-        cve_id: id.to_string(),
-        exploit_id: exp.id,
-      };
-      if let Err(err) = CveExploit::create(conn, &new_cve_exp) {
-        println!("漏洞利用关联CVE失败：{:?}", err);
-      }
-    }
-  }
-}
diff --git a/helper/src/kb/mod.rs b/helper/src/kb/mod.rs
index 4eefc69..fc457e7 100644
--- a/helper/src/kb/mod.rs
+++ b/helper/src/kb/mod.rs
@@ -1,20 +1,587 @@
+use std::collections::HashSet;
+use std::ffi::OsStr;
+use std::fmt;
+use std::fs::File;
+use std::marker::PhantomData;
 use std::ops::DerefMut;
+use std::path::{Path, PathBuf};
+use std::sync::Arc;
 
+use attackerkb_api_rs::AttackKBApi;
 use attackerkb_api_rs::pagination::KBResponse;
 use attackerkb_api_rs::v1::query::TopicsParametersBuilder;
-use attackerkb_api_rs::AttackKBApi;
-use chrono::Utc;
+use chrono::{DateTime, Duration, NaiveDateTime, Utc};
 use diesel::MysqlConnection;
+use octocrab::{Octocrab, Page};
+use octocrab::models::repos::{DiffEntryStatus, RepoCommit};
+use reqwest::header;
+use serde::{de, Deserialize, Deserializer, Serialize};
 
+use nvd_model::cve_knowledge_base::CveKnowledgeBase;
+use nvd_model::cve_knowledge_base::db::CreateCveKB;
 use nvd_model::error::DBResult;
-use nvd_model::exploit::db::{CreateExploit, ExploitSource};
-use nvd_model::knowledge_base::db::{CreateKnowledgeBase, KnowledgeBaseSource};
+use nvd_model::knowledge_base::db::{CreateKnowledgeBase, KBSource, KBTypes};
 use nvd_model::knowledge_base::KnowledgeBase;
 use nvd_model::types::{AnyValue, MetaData};
 
+use crate::{Connection, init_db_pool};
 use crate::error::HelperResult;
-use crate::exp::create_or_update_exploit;
-use crate::init_db_pool;
+
+mod date_format {
+  use chrono::{NaiveDate, NaiveDateTime, Utc};
+  use serde::{self, Deserialize, Deserializer, Serializer};
+
+  pub(crate) const FORMAT: &str = "%Y-%m-%d";
+
+  pub fn serialize<S>(date: &NaiveDateTime, serializer: S) -> Result<S::Ok, S::Error>
+    where
+      S: Serializer,
+  {
+    let s = date.to_string();
+    serializer.serialize_str(&s)
+  }
+
+  pub fn deserialize<'de, D>(deserializer: D) -> Result<NaiveDateTime, D::Error>
+    where
+      D: Deserializer<'de>,
+  {
+    let s = String::deserialize(deserializer)?;
+    if s.is_empty() {
+      return Ok(Utc::now().naive_local());
+    }
+    match NaiveDate::parse_from_str(&s, FORMAT) {
+      Ok(naive_datetime) => Ok(
+        naive_datetime
+          .and_hms_opt(0, 0, 0)
+          .unwrap_or(Utc::now().naive_local()),
+      ),
+      Err(err) => Err(serde::de::Error::custom(err)),
+    }
+  }
+}
+
+#[derive(Debug, Deserialize, Serialize, Clone)]
+struct ExploitDB {
+  id: u32,
+  file: String,
+  description: String,
+  #[serde(with = "date_format")]
+  date_published: NaiveDateTime,
+  author: String,
+  r#type: String,
+  platform: String,
+  port: Option<u16>,
+  #[serde(with = "date_format")]
+  date_added: NaiveDateTime,
+  #[serde(with = "date_format")]
+  date_updated: NaiveDateTime,
+  verified: u8,
+  codes: Option<String>,
+  tags: Option<String>,
+  aliases: Option<String>,
+  screenshot_url: Option<String>,
+  application_url: Option<String>,
+  source_url: Option<String>,
+}
+
+impl ExploitDB {
+  fn from_html(html: &str, item: &Item) -> Self {
+    let id = item.link.rsplit_once('/').unwrap_or_default().1;
+    let v = html.contains("<i class=\"mdi mdi-24px mdi-check\"");
+    let mut exp = ExploitDB {
+      id: id.parse().unwrap_or_default(),
+      file: "".to_string(),
+      description: item.description.clone(),
+      date_published: item.published,
+      author: "".to_string(),
+      r#type: "".to_string(),
+      platform: "".to_string(),
+      port: None,
+      date_added: Default::default(),
+      date_updated: item.published,
+      verified: v as u8,
+      codes: None,
+      tags: None,
+      aliases: None,
+      screenshot_url: None,
+      application_url: None,
+      source_url: None,
+    };
+    for line in html.lines() {
+      if line.contains("<a href=\"https://nvd.nist.gov/vuln/detail/CVE-") {
+        if let Some(u) = line.trim().trim_end_matches('"').strip_prefix("<a href=\"") {
+          if let Some((_, id)) = u.rsplit_once('/') {
+            exp.codes = Some(id.to_string());
+          };
+        };
+      } else if line.contains("<a href=\"/?platform=") {
+        if let Some(platform) = line
+          .trim()
+          .trim_end_matches("\">")
+          .strip_prefix("<a href=\"/?platform=")
+        {
+          exp.platform = platform.to_string();
+        };
+      } else if line.contains("<a href=\"/?type=") {
+        if let Some(t) = line
+          .trim()
+          .trim_end_matches("\">")
+          .strip_prefix("<a href=\"/?type=")
+        {
+          exp.r#type = t.to_string();
+        };
+      } else if line.contains("<pre><code class=\"language-") {
+        if let Some(u) = line
+          .trim()
+          .trim_end_matches('"')
+          .strip_prefix("<pre><code class=\"language-")
+        {
+          if let Some((l, _)) = u.split_once('"') {
+            exp.file = format!(
+              "exploits/{}/{}/{}.{}",
+              exp.platform,
+              exp.r#type,
+              id,
+              l.to_lowercase()
+            );
+          };
+        };
+      }
+    }
+    exp
+  }
+}
+
+pub fn create_or_update_exploit(
+  connection: &mut MysqlConnection,
+  kb_item: CreateKnowledgeBase,
+  cve_id: Option<String>,
+) -> DBResult<KnowledgeBase> {
+  match KnowledgeBase::create_or_update(connection, &kb_item) {
+    Ok(kb) => {
+      if let Some(cve_id) = cve_id {
+        let new_cve_exp = CreateCveKB {
+          cve_id,
+          knowledge_base_id: kb.id.clone(),
+        };
+        if let Err(err) = CveKnowledgeBase::create(connection, &new_cve_exp) {
+          println!("漏洞利用关联CVE失败：{:?}", err);
+        }
+      }
+      println!("从{}同步exploit: {}", kb_item.source, kb_item.path);
+      Ok(kb)
+    }
+    Err(err) => Err(err),
+  }
+}
+
+pub fn with_archive_exploit(path: PathBuf) {
+  let file = File::open(path).unwrap();
+  let mut rdr = csv::Reader::from_reader(file);
+  let connection_pool = init_db_pool();
+  for result in rdr.deserialize() {
+    // Notice that we need to provide a type hint for automatic
+    // deserialization.
+    let kb_item: ExploitDB = result.unwrap();
+    let meta = if let Some(code) = kb_item.codes {
+      MetaData::from_hashset(
+        "tags",
+        code
+          .split(';')
+          .map(|s| s.to_string())
+          .collect::<HashSet<String>>(),
+      )
+    } else {
+      MetaData::default()
+    };
+    let new_exp = CreateKnowledgeBase {
+      id: uuid::Uuid::new_v4().as_bytes().to_vec(),
+      name: kb_item.id.to_string(),
+      description: kb_item.description,
+      source: KBSource::ExploitDb.to_string(),
+      path: kb_item.file,
+      meta: AnyValue::new(meta.clone()),
+      verified: kb_item.verified,
+      created_at: kb_item.date_published,
+      updated_at: kb_item.date_updated,
+      types: KBTypes::Exploit.to_string(),
+    };
+    if let Some(code_list) = meta.get_hashset("tags") {
+      for c in code_list {
+        if c.starts_with("CVE-") {
+          // 是CVE
+          if let Err(err) = create_or_update_exploit(
+            connection_pool.get().unwrap().deref_mut(),
+            new_exp.clone(),
+            Some(c.clone()),
+          ) {
+            println!("是CVE： import knowledge_base err: {:?}", err);
+          }
+        } else {
+          // code不为空，但是不是cve
+          if let Err(err) = create_or_update_exploit(
+            connection_pool.get().unwrap().deref_mut(),
+            new_exp.clone(),
+            None,
+          ) {
+            println!(
+              "code不为空，但是不是cve： import knowledge_base err: {:?}",
+              err
+            );
+          }
+        }
+      }
+    } else {
+      // code为空
+      if let Err(err) = create_or_update_exploit(
+        connection_pool.get().unwrap().deref_mut(),
+        new_exp.clone(),
+        None,
+      ) {
+        println!("code为空：import knowledge_base err: {:?}", err);
+      }
+    }
+    // break;
+  }
+}
+
+pub async fn update_from_github() {
+  let connection_pool = init_db_pool();
+  let commit_api = GitHubCommit::new("projectdiscovery", "nuclei-templates");
+  commit_api
+    .update(connection_pool.get().unwrap().deref_mut())
+    .await;
+}
+
+/// 字符串转set
+fn string_to_hashset<'de, D>(deserializer: D) -> Result<HashSet<String>, D::Error>
+  where
+    D: Deserializer<'de>,
+{
+  struct StringToHashSet(PhantomData<HashSet<String>>);
+  impl<'de> de::Visitor<'de> for StringToHashSet {
+    type Value = HashSet<String>;
+    fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
+      formatter.write_str("string or list of strings")
+    }
+    fn visit_str<E>(self, value: &str) -> Result<Self::Value, E>
+      where
+        E: de::Error,
+    {
+      let name: Vec<String> = value
+        .split(',')
+        .filter(|s| !s.starts_with("cve"))
+        .map(String::from)
+        .collect();
+      Ok(HashSet::from_iter(name))
+    }
+    fn visit_seq<S>(self, visitor: S) -> Result<Self::Value, S::Error>
+      where
+        S: de::SeqAccess<'de>,
+    {
+      Deserialize::deserialize(de::value::SeqAccessDeserializer::new(visitor))
+    }
+  }
+  deserializer.deserialize_any(StringToHashSet(PhantomData))
+}
+
+#[derive(Debug, Serialize, Deserialize, Clone, Default)]
+struct Template {
+  id: String,
+  info: Info,
+}
+
+#[derive(Debug, Serialize, Deserialize, Clone, Default)]
+struct Info {
+  name: String,
+  description: String,
+  classification: Option<Classification>,
+  #[serde(deserialize_with = "string_to_hashset")]
+  tags: HashSet<String>,
+}
+
+#[derive(Debug, Serialize, Deserialize, Clone, Default)]
+struct Classification {
+  #[serde(rename = "cve-id")]
+  cve_id: Option<String>,
+  cpe: Option<String>,
+}
+
+pub struct GitHubCommit {
+  owner: String,
+  repo: String,
+  api: Arc<Octocrab>,
+}
+
+fn get_yaml_file(path: PathBuf) -> Vec<PathBuf> {
+  let mut yaml_file_list: Vec<PathBuf> = Vec::new();
+  if let Ok(read_dir) = Path::new(&path).read_dir() {
+    for element in read_dir.filter_map(|res| res.ok()) {
+      if element.path().is_dir() {
+        yaml_file_list.extend(get_yaml_file(element.path()));
+      }
+      if element.path().is_file() {
+        yaml_file_list.push(element.path());
+      }
+    }
+  }
+  yaml_file_list
+}
+
+pub fn import_from_nuclei_templates_path(path: PathBuf) {
+  let mut connection_pool = init_db_pool().get().unwrap();
+  let conn = connection_pool.deref_mut();
+  let cve_path = path.join("http").join("cves");
+  let yaml_paths = get_yaml_file(cve_path);
+  for yaml_path in yaml_paths {
+    if let Ok(f) = File::open(&yaml_path) {
+      let template: Template = serde_yaml::from_reader(f).unwrap();
+      let meta = MetaData::from_hashset("tags", template.info.tags);
+      let new_exp = CreateKnowledgeBase {
+        id: uuid::Uuid::new_v4().as_bytes().to_vec(),
+        name: template.id.clone(),
+        description: template.info.description,
+        source: KBSource::NucleiTemplates.to_string(),
+        path: yaml_path
+          .strip_prefix(&path)
+          .unwrap()
+          .to_string_lossy()
+          .to_string(),
+        meta: AnyValue::new(meta),
+        verified: 1,
+        created_at: Utc::now().naive_utc(),
+        updated_at: Utc::now().naive_utc(),
+        types: KBTypes::Exploit.to_string(),
+      };
+      if let Err(err) = create_or_update_exploit(conn, new_exp, Some(template.id)) {
+        println!("import nuclei knowledge_base err: {:?}", err);
+      }
+    }
+  }
+}
+
+impl GitHubCommit {
+  pub fn new(owner: impl Into<String>, repo: impl Into<String>) -> Self {
+    Self {
+      owner: owner.into(),
+      repo: repo.into(),
+      api: octocrab::instance(),
+    }
+  }
+  async fn get_commit_list(&self) -> octocrab::Result<Page<RepoCommit>> {
+    let now = Utc::now();
+    let three_hours = now - Duration::hours(3);
+    println!(
+      "开始更新从{}到{}kb",
+      three_hours.to_rfc3339(),
+      now.to_rfc3339()
+    );
+    self
+      .api
+      .repos(&self.owner, &self.repo)
+      .list_commits()
+      .path("http/cves")
+      .since(three_hours)
+      .send()
+      .await
+  }
+  async fn get_commit(&self, sha: String) -> octocrab::Result<RepoCommit> {
+    self.api.commits(&self.owner, &self.repo).get(sha).await
+  }
+  async fn get_template(&self, path: String) -> octocrab::Result<Template> {
+    let content = self
+      .api
+      .repos(&self.owner, &self.repo)
+      .get_content()
+      .path(&path)
+      .send()
+      .await?;
+    let mut code = String::new();
+    for c in content.items {
+      code.push_str(&c.decoded_content().unwrap_or_default())
+    }
+    let template: Template = serde_yaml::from_str(&code).unwrap_or_default();
+    Ok(template)
+  }
+
+  pub async fn update(&self, conn: &mut Connection) {
+    let list_commits = self.get_commit_list().await;
+    let mut cache_map = HashSet::new();
+    if let Ok(list_commits) = list_commits {
+      for commits in list_commits {
+        if let Ok(commit) = self.get_commit(commits.sha).await {
+          for file in commit.files.clone().unwrap_or_default() {
+            if cache_map.contains(&format!("{:?}_{}", file.status, file.filename)) {
+              continue;
+            }
+            cache_map.insert(format!("{:?}_{}", file.status, file.filename));
+            let path = file.filename.clone();
+            let meta = MetaData::default();
+            let cve = Path::new(&file.filename)
+              .file_name()
+              .unwrap_or_default()
+              .to_string_lossy()
+              .to_string()
+              .strip_suffix(&format!(
+                ".{}",
+                Path::new(&file.filename)
+                  .extension()
+                  .unwrap_or(OsStr::new(".yaml"))
+                  .to_string_lossy()
+                  .to_string()
+                  .as_str()
+              ))
+              .unwrap_or_default()
+              .to_string();
+            if !cve.starts_with("CVE-") {
+              break;
+            }
+            match file.status {
+              DiffEntryStatus::Added | DiffEntryStatus::Modified => {
+                let template = self.get_template(file.filename).await.unwrap_or_default();
+                if !template.id.starts_with("CVE-") {
+                  break;
+                }
+                let new_exp = CreateKnowledgeBase {
+                  id: uuid::Uuid::new_v4().as_bytes().to_vec(),
+                  name: template.id.clone(),
+                  description: template.info.description,
+                  source: KBSource::NucleiTemplates.to_string(),
+                  meta: AnyValue::new(meta),
+                  verified: 1,
+                  created_at: Utc::now().naive_utc(),
+                  updated_at: Utc::now().naive_utc(),
+                  path,
+                  types: KBTypes::Exploit.to_string(),
+                };
+                if let Err(err) = create_or_update_exploit(conn, new_exp, Some(template.id)) {
+                  println!("import nuclei knowledge_base err: {:?}", err);
+                }
+              }
+              DiffEntryStatus::Removed => {
+                if let Err(err) = KnowledgeBase::delete(conn, &cve, KBSource::NucleiTemplates) {
+                  println!("删除 knowledge_base err: {:?}", err);
+                }
+              }
+              DiffEntryStatus::Renamed => {}
+              DiffEntryStatus::Copied => {}
+              DiffEntryStatus::Changed => {}
+              DiffEntryStatus::Unchanged => {}
+              _ => {}
+            }
+          }
+        }
+      }
+    }
+  }
+}
+
+#[derive(Deserialize, Serialize, Debug, Clone)]
+#[serde(rename_all = "kebab-case")]
+struct Rss {
+  channel: Channel,
+}
+
+#[derive(Deserialize, Serialize, Debug, Clone)]
+#[serde(rename_all = "kebab-case")]
+struct Channel {
+  item: Vec<Item>,
+}
+
+#[derive(Deserialize, Serialize, Debug, Clone)]
+#[serde(rename_all = "kebab-case")]
+struct Item {
+  title: String,
+  link: String,
+  description: String,
+  #[serde(alias = "pubDate", deserialize_with = "rfc3339_deserialize")]
+  published: NaiveDateTime,
+}
+
+pub fn rfc3339_deserialize<'de, D>(deserializer: D) -> Result<NaiveDateTime, D::Error>
+  where
+    D: Deserializer<'de>,
+{
+  let s = String::deserialize(deserializer)?;
+  if s.is_empty() {
+    return Ok(Utc::now().naive_local());
+  }
+  match DateTime::parse_from_rfc2822(&s) {
+    Ok(naive_datetime) => Ok(naive_datetime.naive_local()),
+    Err(err) => Err(serde::de::Error::custom(err)),
+  }
+}
+
+async fn get_info_from_exploit_url(conn: &mut Connection, item: &Item) {
+  let mut headers = header::HeaderMap::new();
+  let ua = "Mozilla/5.0 (X11; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/94.0";
+  headers.insert(header::USER_AGENT, header::HeaderValue::from_static(ua));
+  if let Ok(resp) = reqwest::ClientBuilder::new()
+    .default_headers(headers)
+    .build()
+    .unwrap_or_default()
+    .get(&item.link)
+    .send()
+    .await
+  {
+    let html = resp.text().await.unwrap_or_default();
+    let kb_item = ExploitDB::from_html(&html, item);
+    let meta = MetaData::default();
+    let new_exp = CreateKnowledgeBase {
+      id: uuid::Uuid::new_v4().as_bytes().to_vec(),
+      name: kb_item.id.to_string(),
+      description: kb_item.description,
+      source: KBSource::ExploitDb.to_string(),
+      path: kb_item.file,
+      meta: AnyValue::new(meta.clone()),
+      verified: kb_item.verified,
+      created_at: kb_item.date_published,
+      updated_at: kb_item.date_updated,
+      types: KBTypes::Exploit.to_string(),
+    };
+    if !new_exp.path.is_empty()
+      && kb_item.id != 0
+      && !kb_item.r#type.is_empty()
+      && !kb_item.platform.is_empty()
+    {
+      if let Err(err) = create_or_update_exploit(conn, new_exp, kb_item.codes) {
+        println!("import nuclei knowledge_base err: {:?}", err);
+      }
+    }
+  }
+}
+
+pub async fn update_from_rss() {
+  let connection_pool = init_db_pool();
+  if let Ok(resp) = reqwest::get("https://www.exploit-db.com/rss.xml").await {
+    let b = resp.bytes().await.unwrap_or_default();
+    let s = String::from_utf8_lossy(&b);
+    let rss: Rss = quick_xml::de::from_str(&s).unwrap();
+    for item in rss.channel.item {
+      // 发布时间小于三天前跳过更新
+      if item.published < (Utc::now() - Duration::days(3)).naive_utc() {
+        continue;
+      }
+      get_info_from_exploit_url(connection_pool.get().unwrap().deref_mut(), &item).await;
+    }
+  }
+}
+
+// 绑定cve和exploit，也许是先有了exp，cve还没更新进来
+pub fn associate_cve_and_exploit(conn: &mut Connection, id: &str) {
+  // 查出有当前cve的exp，然后创建绑定关系
+  if let Ok(kbs) = KnowledgeBase::query_by_cve(conn, id) {
+    for kb in kbs {
+      let new_cve_exp = CreateCveKB {
+        cve_id: id.to_string(),
+        knowledge_base_id: kb.id,
+      };
+      if let Err(err) = CveKnowledgeBase::create(conn, &new_cve_exp) {
+        println!("漏洞利用关联CVE失败：{:?}", err);
+      }
+    }
+  }
+}
 
 pub async fn akb_sync() -> HelperResult<()> {
   let token = if let Ok(t) = dotenvy::var("ABK_API_TOKEN") {
@@ -37,9 +604,10 @@ pub async fn akb_sync() -> HelperResult<()> {
             id: uuid::Uuid::new_v4().as_bytes().to_vec(),
             name: topic.name.clone(),
             description: topic.document,
-            source: KnowledgeBaseSource::AttackerKB.to_string(),
-            links: format!("https://attackerkb.com/topics/{}", topic.name),
+            source: KBSource::AttackerKB.to_string(),
+            path: format!("https://attackerkb.com/topics/{}", topic.name),
             meta: AnyValue::new(meta),
+            verified: true as u8,
             created_at: topic
               .rapid7_analysis_created
               .unwrap_or(Utc::now())
@@ -48,9 +616,13 @@ pub async fn akb_sync() -> HelperResult<()> {
               .rapid7_analysis_revision_date
               .unwrap_or(Utc::now())
               .naive_utc(),
+            types: KBTypes::KnowledgeBase.to_string(),
           };
-          if let Err(err) = create_or_update_kb(connection_pool.get().unwrap().deref_mut(), new_kb)
-          {
+          if let Err(err) = create_or_update_exploit(
+            connection_pool.get().unwrap().deref_mut(),
+            new_kb,
+            Some(topic.name),
+          ) {
             println!("import attackerkb err: {:?}", err);
           }
           break;
@@ -58,16 +630,17 @@ pub async fn akb_sync() -> HelperResult<()> {
         if let Some(credits) = topic.metadata.credits {
           for module in credits.module {
             println!("同步metasploit插件：{}", module);
-            let new_exp = CreateExploit {
+            let new_exp = CreateKnowledgeBase {
               id: uuid::Uuid::new_v4().as_bytes().to_vec(),
               name: topic.name.to_string(),
               description: topic.document.clone(),
-              source: ExploitSource::Metasploit.to_string(),
+              source: KBSource::Metasploit.to_string(),
               path: module,
               meta: AnyValue::new(meta.clone()),
               verified: true as u8,
               created_at: topic.created.naive_utc(),
               updated_at: topic.revision_date.naive_utc(),
+              types: KBTypes::Exploit.to_string(),
             };
             if let Err(err) = create_or_update_exploit(
               connection_pool.get().unwrap().deref_mut(),
@@ -83,16 +656,3 @@ pub async fn akb_sync() -> HelperResult<()> {
   }
   Ok(())
 }
-
-fn create_or_update_kb(
-  connection: &mut MysqlConnection,
-  kb_item: CreateKnowledgeBase,
-) -> DBResult<KnowledgeBase> {
-  match KnowledgeBase::create_or_update(connection, &kb_item) {
-    Ok(kb) => {
-      println!("从{}同步kb: {}", kb_item.source, kb_item.links);
-      Ok(kb)
-    }
-    Err(err) => Err(err),
-  }
-}
diff --git a/helper/src/lib.rs b/helper/src/lib.rs
index 6e595ae..bc66ea3 100644
--- a/helper/src/lib.rs
+++ b/helper/src/lib.rs
@@ -1,8 +1,8 @@
 use chrono::{Duration, Utc};
+use diesel::{MysqlConnection, r2d2};
 use diesel::r2d2::ConnectionManager;
-use diesel::{r2d2, MysqlConnection};
-use nvd_api::v2::vulnerabilities::CveParameters;
 use nvd_api::v2::LastModDate;
+use nvd_api::v2::vulnerabilities::CveParameters;
 
 pub use cli::{CPECommand, CVECommand, NVDHelper, TopLevel};
 use cpe::create_cve_product;
@@ -11,17 +11,16 @@ pub use cwe::import_cwe;
 use crate::cli::{EXPCommand, KBCommand, SyncCommand};
 use crate::cpe::with_archive_cpe;
 use crate::cve::{async_cve, with_archive_cve};
-use crate::exp::{
-  import_from_nuclei_templates_path, update_from_github, update_from_rss, with_archive_exploit,
+use crate::kb::{
+  akb_sync, import_from_nuclei_templates_path, update_from_github, update_from_rss,
+  with_archive_exploit,
 };
-use crate::kb::akb_sync;
 
 mod cli;
 mod cpe;
 mod cve;
 mod cwe;
 pub mod error;
-mod exp;
 mod kb;
 
 pub type Connection = MysqlConnection;
diff --git a/nvd-cvss/src/v2/access_complexity.rs b/nvd-cvss/src/v2/access_complexity.rs
index a7732ab..f92b12a 100644
--- a/nvd-cvss/src/v2/access_complexity.rs
+++ b/nvd-cvss/src/v2/access_complexity.rs
@@ -1,6 +1,6 @@
 //! ### 2.1.2. Access Complexity (AC)
 //!
-//! This metric measures the complexity of the attack required to exploit the vulnerability once an attacker has gained access to the target system. For example, consider a buffer overflow in an Internet service: once the target system is located, the attacker can launch an exploit at will.
+//! This metric measures the complexity of the attack required to knowledge_base the vulnerability once an attacker has gained access to the target system. For example, consider a buffer overflow in an Internet service: once the target system is located, the attacker can launch an knowledge_base at will.
 //!
 //! Other vulnerabilities, however, may require additional steps in order to be exploited. For example, a vulnerability in an email client is only exploited after the user downloads and opens a tainted attachment. The possible values for this metric are listed in Table 2. The lower the required complexity, the higher the vulnerability score.
 //!
@@ -15,7 +15,7 @@
 //! ||\- The attacking party is limited to a group of systems or users at some level of authorization, possibly untrusted.
 //! ||\- Some information must be gathered before a successful attack can be launched.
 //! ||\- The affected configuration is non-default, and is not commonly configured (e.g., a vulnerability present when a server performs user account authentication via a specific scheme, but not present for another authentication scheme).
-//! ||\- The attack requires a small amount of social engineering that might occasionally fool cautious users (e.g., phishing attacks that modify a web browsers status bar to show a false link, having to be on someones buddy list before sending an IM exploit). |
+//! ||\- The attack requires a small amount of social engineering that might occasionally fool cautious users (e.g., phishing attacks that modify a web browsers status bar to show a false link, having to be on someones buddy list before sending an IM knowledge_base). |
 //! | Low (L) | Specialized access conditions or extenuating circumstances do not exist. The following are examples:
 //! ||\- The affected product typically requires access to a wide range of systems and users, possibly anonymous and untrusted (e.g., Internet-facing web or mail server).
 //! ||\- The affected configuration is default or ubiquitous.
@@ -23,12 +23,14 @@
 //! ||\- The race condition is a lazy one (i.e., it is technically a race but easily winnable). |
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV2, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV2, Worth};
+
 /// AccessComplexity
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
 #[serde(rename_all = "UPPERCASE")]
diff --git a/nvd-cvss/src/v2/authentication.rs b/nvd-cvss/src/v2/authentication.rs
index 37c8242..91ed90c 100644
--- a/nvd-cvss/src/v2/authentication.rs
+++ b/nvd-cvss/src/v2/authentication.rs
@@ -1,22 +1,24 @@
 //! ### 2.1.3. Authentication (Au)
 //!
-//! This metric measures the number of times an attacker must authenticate to a target in order to exploit a vulnerability. This metric does not gauge the strength or complexity of the authentication process, only that an attacker is required to provide credentials before an exploit may occur.  The possible values for this metric are listed in Table 3. The fewer authentication instances that are required, the higher the vulnerability score.
+//! This metric measures the number of times an attacker must authenticate to a target in order to knowledge_base a vulnerability. This metric does not gauge the strength or complexity of the authentication process, only that an attacker is required to provide credentials before an knowledge_base may occur.  The possible values for this metric are listed in Table 3. The fewer authentication instances that are required, the higher the vulnerability score.
 //!
 //! | Metric Value | Description |
 //! | --- | --- |
 //! | Multiple (M) | Exploiting the vulnerability requires that the attacker authenticate two or more times, even if the same credentials are used each time. An example is an attacker authenticating to an operating system in addition to providing credentials to access an application hosted on that system. |
 //! | Single (S) | The vulnerability requires an attacker to be logged into the system (such as at a command line or via a desktop session or web interface). |
-//! | None (N) | Authentication is not required to exploit the vulnerability. |
+//! | None (N) | Authentication is not required to knowledge_base the vulnerability. |
 //!
-//! The metric should be applied based on the authentication the attacker requires before launching an attack.  For example, if a mail server is vulnerable to a command that can be issued before a user authenticates, the metric should be scored as "None" because the attacker can launch the exploit before credentials are required.  If the vulnerable command is only available after successful authentication, then the vulnerability should be scored as "Single" or "Multiple," depending on how many instances of authentication must occur before issuing the command.
+//! The metric should be applied based on the authentication the attacker requires before launching an attack.  For example, if a mail server is vulnerable to a command that can be issued before a user authenticates, the metric should be scored as "None" because the attacker can launch the knowledge_base before credentials are required.  If the vulnerable command is only available after successful authentication, then the vulnerability should be scored as "Single" or "Multiple," depending on how many instances of authentication must occur before issuing the command.
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV2, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV2, Worth};
+
 /// Authentication
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
 #[serde(rename_all = "UPPERCASE")]
@@ -55,7 +57,7 @@ impl Metric for AuthenticationType {
       },
       Self::None => Help {
         worth: Worth::Worst,
-        des: "Authentication is not required to exploit the vulnerability.".to_string(),
+        des: "Authentication is not required to knowledge_base the vulnerability.".to_string(),
       },
     }
   }
diff --git a/nvd-cvss/src/v3/attack_complexity.rs b/nvd-cvss/src/v3/attack_complexity.rs
index dd4a439..d60c5e6 100644
--- a/nvd-cvss/src/v3/attack_complexity.rs
+++ b/nvd-cvss/src/v3/attack_complexity.rs
@@ -1,29 +1,31 @@
 //! ### 2.1.2. Attack Complexity (AC)
 //!
-//! This metric describes the conditions beyond the attacker’s control that must exist in order to exploit the vulnerability. As described below, such conditions may require the collection of more information about the target, or computational exceptions. Importantly, the assessment of this metric excludes any requirements for user interaction in order to exploit the vulnerability (such conditions are captured in the User Interaction metric). If a specific configuration is required for an attack to succeed, the Base metrics should be scored assuming the vulnerable component is in that configuration. The Base Score is greatest for the least complex attacks. The list of possible values is presented in Table 2.
+//! This metric describes the conditions beyond the attacker’s control that must exist in order to knowledge_base the vulnerability. As described below, such conditions may require the collection of more information about the target, or computational exceptions. Importantly, the assessment of this metric excludes any requirements for user interaction in order to knowledge_base the vulnerability (such conditions are captured in the User Interaction metric). If a specific configuration is required for an attack to succeed, the Base metrics should be scored assuming the vulnerable component is in that configuration. The Base Score is greatest for the least complex attacks. The list of possible values is presented in Table 2.
 //!
 //! **Table 2: Attack Complexity**
 //!
 //! | Metric Value | Description |
 //! | --- | --- |
 //! | Low (L) | Specialized access conditions or extenuating circumstances do not exist. An attacker can expect repeatable success when attacking the vulnerable component. |
-//! | High (H) | A successful attack depends on conditions beyond the attacker's control. That is, a successful attack cannot be accomplished at will, but requires the attacker to invest in some measurable amount of effort in preparation or execution against the vulnerable component before a successful attack can be expected.\[^2\] For example, a successful attack may depend on an attacker overcoming any of the following conditions:<br>*   The attacker must gather knowledge about the environment in which the vulnerable target/component exists. For example, a requirement to collect details on target configuration settings, sequence numbers, or shared secrets.<br>*   The attacker must prepare the target environment to improve exploit reliability. For example, repeated exploitation to win a race condition, or overcoming advanced exploit mitigation techniques.<br>*   The attacker must inject themselves into the logical network path between the target and the resource requested by the victim in order to read and/or modify network communications (e.g., a man in the middle attack).|
+//! | High (H) | A successful attack depends on conditions beyond the attacker's control. That is, a successful attack cannot be accomplished at will, but requires the attacker to invest in some measurable amount of effort in preparation or execution against the vulnerable component before a successful attack can be expected.\[^2\] For example, a successful attack may depend on an attacker overcoming any of the following conditions:<br>*   The attacker must gather knowledge about the environment in which the vulnerable target/component exists. For example, a requirement to collect details on target configuration settings, sequence numbers, or shared secrets.<br>*   The attacker must prepare the target environment to improve knowledge_base reliability. For example, repeated exploitation to win a race condition, or overcoming advanced knowledge_base mitigation techniques.<br>*   The attacker must inject themselves into the logical network path between the target and the resource requested by the victim in order to read and/or modify network communications (e.g., a man in the middle attack).|
 //!
-//! _Scoring Guidance_: When deciding between Network and Adjacent, if an attack can be launched over a wide area network or from outside the logically adjacent administrative network domain, use Network. Network should be used even if the attacker is required to be on the same intranet to exploit the vulnerable system (e.g., the attacker can only exploit the vulnerability from inside a corporate network).
+//! _Scoring Guidance_: When deciding between Network and Adjacent, if an attack can be launched over a wide area network or from outside the logically adjacent administrative network domain, use Network. Network should be used even if the attacker is required to be on the same intranet to knowledge_base the vulnerable system (e.g., the attacker can only knowledge_base the vulnerability from inside a corporate network).
 //!
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// Attack Complexity (AC) 攻击复杂度
 ///
 /// 攻击复杂度为攻击者无法控制的条件，这些条件必须存在才能攻击脆弱组件。
 /// 如下文所述，这些条件可能需要预先收集有关目标或系统的配置或计算异常等更多信息。
 ///
 /// > The Attack Complexity metric describes the conditions beyond the attacker's control that must
-/// > exist in order to exploit the vulnerability. As described below, such conditions may require
+/// > exist in order to knowledge_base the vulnerability. As described below, such conditions may require
 /// > the collection of more information about the target, the presence of certain system
 /// > configuration settings, or computational exceptions.
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
diff --git a/nvd-cvss/src/v3/attack_vector.rs b/nvd-cvss/src/v3/attack_vector.rs
index eee5620..403fa93 100644
--- a/nvd-cvss/src/v3/attack_vector.rs
+++ b/nvd-cvss/src/v3/attack_vector.rs
@@ -1,6 +1,6 @@
 //! ### 2.1.1. Attack Vector (AV)
 //!
-//! This metric reflects the context by which vulnerability exploitation is possible. This metric value (and consequently the Base Score) will be larger the more remote (logically, and physically) an attacker can be in order to exploit the vulnerable component. The assumption is that the number of potential attackers for a vulnerability that could be exploited from across a network is larger than the number of potential attackers that could exploit a vulnerability requiring physical access to a device, and therefore warrants a greater Base Score. The list of possible values is presented in Table 1.
+//! This metric reflects the context by which vulnerability exploitation is possible. This metric value (and consequently the Base Score) will be larger the more remote (logically, and physically) an attacker can be in order to knowledge_base the vulnerable component. The assumption is that the number of potential attackers for a vulnerability that could be exploited from across a network is larger than the number of potential attackers that could knowledge_base a vulnerability requiring physical access to a device, and therefore warrants a greater Base Score. The list of possible values is presented in Table 1.
 //!
 //! **Table 1: Attack Vector**
 //!
@@ -8,18 +8,20 @@
 //! | --- | --- |
 //! | Network (N) | The vulnerable component is bound to the network stack and the set of possible attackers extends beyond the other options listed below, up to and including the entire Internet. Such a vulnerability is often termed “remotely exploitable” and can be thought of as an attack being exploitable _at the protocol level_ one or more network hops away (e.g., across one or more routers). An example of a network attack is an attacker causing a denial of service (DoS) by sending a specially crafted TCP packet across a wide area network (e.g., CVE‑2004‑0230). |
 //! | Adjacent (A) | The vulnerable component is bound to the network stack, but the attack is limited _at the protocol level_ to a logically adjacent topology. This can mean an attack must be launched from the same shared physical (e.g., Bluetooth or IEEE 802.11) or logical (e.g., local IP subnet) network, or from within a secure or otherwise limited administrative domain (e.g., MPLS, secure VPN to an administrative network zone). One example of an Adjacent attack would be an ARP (IPv4) or neighbor discovery (IPv6) flood leading to a denial of service on the local LAN segment (e.g., CVE‑2013‑6014). |
-//! | Local (L) | The vulnerable component is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either: <br>*   the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or remotely (e.g., SSH); _or_<br>*   the attacker relies on User Interaction by another person to perform actions required to exploit the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document).|
+//! | Local (L) | The vulnerable component is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either: <br>*   the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or remotely (e.g., SSH); _or_<br>*   the attacker relies on User Interaction by another person to perform actions required to knowledge_base the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document).|
 //! | Physical (P) | The attack requires the attacker to physically touch or manipulate the vulnerable component. Physical interaction may be brief (e.g., evil maid attack\[^1\]) or persistent. An example of such an attack is a cold boot attack in which an attacker gains access to disk encryption keys after physically accessing the target system. Other examples include peripheral attacks via FireWire/USB Direct Memory Access (DMA). |
 //!
-//! _Scoring Guidance_: When deciding between Network and Adjacent, if an attack can be launched over a wide area network or from outside the logically adjacent administrative network domain, use Network. Network should be used even if the attacker is required to be on the same intranet to exploit the vulnerable system (e.g., the attacker can only exploit the vulnerability from inside a corporate network).
+//! _Scoring Guidance_: When deciding between Network and Adjacent, if an attack can be launched over a wide area network or from outside the logically adjacent administrative network domain, use Network. Network should be used even if the attacker is required to be on the same intranet to knowledge_base the vulnerable system (e.g., the attacker can only knowledge_base the vulnerability from inside a corporate network).
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// Attack Vector(AV) 攻击途径
 ///
 /// > 该指标反映了攻击脆弱组件的环境可能。该度量值（以及相应的基本分数）将越大，
@@ -27,7 +29,7 @@ use std::str::FromStr;
 ///
 /// > This metric reflects the context by which vulnerability exploitation is possible.
 /// > This metric value (and consequently the Base score) will be larger the more remote (logically,
-/// > and physically) an attacker can be in order to exploit the vulnerable component.
+/// > and physically) an attacker can be in order to knowledge_base the vulnerable component.
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
 #[serde(rename_all = "SCREAMING_SNAKE_CASE")]
 pub enum AttackVectorType {
diff --git a/nvd-cvss/src/v3/impact_metrics.rs b/nvd-cvss/src/v3/impact_metrics.rs
index a13936c..75dec88 100644
--- a/nvd-cvss/src/v3/impact_metrics.rs
+++ b/nvd-cvss/src/v3/impact_metrics.rs
@@ -2,18 +2,21 @@
 //!
 //! The Impact metrics capture the effects of a successfully exploited vulnerability on the component that suffers the worst outcome that is most directly and predictably associated with the attack. Analysts should constrain impacts to a reasonable, final outcome which they are confident an attacker is able to achieve.
 //!
-//! Only the increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when scoring the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to exploit the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
+//! Only the increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when scoring the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to knowledge_base the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
 //!
 //! Note that when scoring a delta change in impact, the **final impact** should be used. For example, if an attacker starts with partial access to restricted information (Confidentiality Low) and successful exploitation of the vulnerability results in complete loss in confidentiality (Confidentiality High), then the resultant CVSS Base Score should reference the “end game” Impact metric value (Confidentiality High).
 //!
 //! If a scope change has not occurred, the Impact metrics should reflect the Confidentiality, Integrity, and Availability impacts to the vulnerable component. However, if a scope change has occurred, then the Impact metrics should reflect the Confidentiality, Integrity, and Availability impacts to either the vulnerable component, or the impacted component, whichever suffers the most severe outcome.
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
+
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// ### 2.3.1. Confidentiality Impact(C) 机密性影响
 ///
 /// 该指标衡量成功利用漏洞对软件组件管理的信息资源的机密性的影响程度。机密 是指仅限于授权用户访问和披露的信息，以及防止未授权用户访问或披露的信息。
@@ -72,7 +75,7 @@ pub enum IntegrityImpactType {
 ///
 /// | Metric Value | Description |
 /// | --- | --- |
-/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
+/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
 /// | Low (L) | Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component. |
 /// | None (N) | There is no impact to availability within the impacted component. |[](#body)
 ///
@@ -245,7 +248,7 @@ impl Metric for AvailabilityImpactType {
 
   fn help(&self) -> Help {
     match self {
-      Self::High => {Help{ worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() }}
+      Self::High => { Help { worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() } }
       Self::Low => {Help{ worth: Worth::Bad, des: "Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component.".to_string() }}
       Self::None => {Help{ worth: Worth::Good, des: "There is no impact to availability within the impacted component.".to_string() }}
     }
diff --git a/nvd-cvss/src/v3/mod.rs b/nvd-cvss/src/v3/mod.rs
index 7b66429..709056e 100644
--- a/nvd-cvss/src/v3/mod.rs
+++ b/nvd-cvss/src/v3/mod.rs
@@ -14,6 +14,11 @@
 //! * * *
 //!
 
+use std::fmt::{Display, Formatter};
+use std::str::FromStr;
+
+use serde::{Deserialize, Serialize};
+
 use crate::error::{CVSSError, Result};
 use crate::metric::{Metric, MetricLevelType};
 use crate::severity::SeverityType;
@@ -26,9 +31,6 @@ use crate::v3::privileges_required::PrivilegesRequiredType;
 use crate::v3::scope::ScopeType;
 use crate::v3::user_interaction::UserInteractionType;
 use crate::version::Version;
-use serde::{Deserialize, Serialize};
-use std::fmt::{Display, Formatter};
-use std::str::FromStr;
 
 pub mod attack_complexity;
 pub mod attack_vector;
@@ -68,7 +70,7 @@ impl ExploitAbility {
 ///
 /// The Common Vulnerability Scoring System (CVSS) captures the principal technical characteristics of software, hardware and firmware vulnerabilities. Its outputs include numerical scores indicating the severity of a vulnerability relative to other vulnerabilities.
 ///
-/// CVSS is composed of three metric groups: Base, Temporal, and Environmental. The Base Score reflects the severity of a vulnerability according to its intrinsic characteristics which are constant over time and assumes the reasonable worst case impact across different deployed environments. The Temporal Metrics adjust the Base severity of a vulnerability based on factors that change over time, such as the availability of exploit code. The Environmental Metrics adjust the Base and Temporal severities to a specific computing environment. They consider factors such as the presence of mitigations in that environment.
+/// CVSS is composed of three metric groups: Base, Temporal, and Environmental. The Base Score reflects the severity of a vulnerability according to its intrinsic characteristics which are constant over time and assumes the reasonable worst case impact across different deployed environments. The Temporal Metrics adjust the Base severity of a vulnerability based on factors that change over time, such as the availability of knowledge_base code. The Environmental Metrics adjust the Base and Temporal severities to a specific computing environment. They consider factors such as the presence of mitigations in that environment.
 ///
 /// Base Scores are usually produced by the organization maintaining the vulnerable product, or a third party scoring on their behalf. It is typical for only the Base Metrics to be published as these do not change over time and are common to all environments. Consumers of CVSS should supplement the Base Score with Temporal and Environmental Scores specific to their use of the vulnerable product to produce a severity more accurate for their organizational environment. Consumers may use CVSS information as input to an organizational vulnerability management process that also considers factors that are not part of CVSS in order to rank the threats to their technology infrastructure and make informed remediation decisions. Such factors may include: number of customers on a product line, monetary losses due to a breach, life or property threatened, or public sentiment on highly publicized vulnerabilities. These are outside the scope of CVSS.
 ///
diff --git a/nvd-cvss/src/v3/user_interaction.rs b/nvd-cvss/src/v3/user_interaction.rs
index 7f04158..14ebbca 100644
--- a/nvd-cvss/src/v3/user_interaction.rs
+++ b/nvd-cvss/src/v3/user_interaction.rs
@@ -7,15 +7,17 @@
 //! | Metric Value | Description |
 //! | --- | --- |
 //! | None (N) | The vulnerable system can be exploited without interaction from any user. |
-//! | Required (R) | Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful exploit may only be possible during the installation of an application by a system administrator. |[](#body)
+//! | Required (R) | Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful knowledge_base may only be possible during the installation of an application by a system administrator. |[](#body)
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// User Interaction (UI) 用户交互
 ///
 /// 此指标描述攻击脆弱组件对除攻击者之外的用户参与的需求，即确定脆弱组件是仅攻击者本身就可以随意利用，还是需要用户（或用户进程）以某种方式参与。
@@ -53,7 +55,7 @@ impl Metric for UserInteractionType {
 
   fn help(&self) -> Help {
     match self {
-      Self::Required => {Help{ worth: Worth::Bad, des: "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful exploit may only be possible during the installation of an application by a system administrator.".to_string() }}
+      Self::Required => { Help { worth: Worth::Bad, des: "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful knowledge_base may only be possible during the installation of an application by a system administrator.".to_string() } }
       Self::None => {Help{ worth: Worth::Worst, des: "The vulnerable system can be exploited without interaction from any user.".to_string() }}
     }
   }
diff --git a/nvd-cvss/src/v4/attack_complexity.rs b/nvd-cvss/src/v4/attack_complexity.rs
index 5599014..ce9aa83 100644
--- a/nvd-cvss/src/v4/attack_complexity.rs
+++ b/nvd-cvss/src/v4/attack_complexity.rs
@@ -1,5 +1,5 @@
 //! ### Attack Complexity (AC)
-//! This metric captures measurable actions that must be taken by the attacker to actively evade or circumvent **existing built-in security-enhancing conditions** in order to obtain a working exploit. These are conditions whose primary purpose is to increase security and/or increase exploit engineering complexity. A vulnerability exploitable without a target-specific variable has a lower complexity than a vulnerability that would require non-trivial customization. This metric is meant to capture security mechanisms utilized by the vulnerable system, and does not relate to the amount of time or attempts it would take for an attacker to succeed, e.g. a race condition. If the attacker does not take action to overcome these conditions, the attack will always fail.
+//! This metric captures measurable actions that must be taken by the attacker to actively evade or circumvent **existing built-in security-enhancing conditions** in order to obtain a working knowledge_base. These are conditions whose primary purpose is to increase security and/or increase knowledge_base engineering complexity. A vulnerability exploitable without a target-specific variable has a lower complexity than a vulnerability that would require non-trivial customization. This metric is meant to capture security mechanisms utilized by the vulnerable system, and does not relate to the amount of time or attempts it would take for an attacker to succeed, e.g. a race condition. If the attacker does not take action to overcome these conditions, the attack will always fail.
 //!
 //! The evasion or satisfaction of authentication mechanisms or requisites is included in the Privileges Required assessment and is **not** considered here as a factor of relevance for Attack Complexity.
 //!
@@ -7,23 +7,25 @@
 //!
 //! | **Metric Value** | **Description** |
 //! | --- | --- |
-//! | Low (L) | The attacker must take no measurable action to exploit the vulnerability. The attack requires no target-specific circumvention to exploit the vulnerability. An attacker can expect repeatable success against the vulnerable system. |
-//! | High (H) | The successful attack depends on the evasion or circumvention of security-enhancing techniques in place that would otherwise hinder the attack. These include: Evasion of exploit mitigation techniques. The attacker must have additional methods available to bypass security measures in place. For example, circumvention of **address space randomization (ASLR) or data execution prevention (DEP)** must be performed for the attack to be successful. Obtaining target-specific secrets. The attacker must gather some **target-specific secret** before the attack can be successful. A secret is any piece of information that cannot be obtained through any amount of reconnaissance. To obtain the secret the attacker must perform additional attacks or break otherwise secure measures (e.g. knowledge of a secret key may be needed to break a crypto channel). This operation must be performed for each attacked target. |
+//! | Low (L) | The attacker must take no measurable action to knowledge_base the vulnerability. The attack requires no target-specific circumvention to knowledge_base the vulnerability. An attacker can expect repeatable success against the vulnerable system. |
+//! | High (H) | The successful attack depends on the evasion or circumvention of security-enhancing techniques in place that would otherwise hinder the attack. These include: Evasion of knowledge_base mitigation techniques. The attacker must have additional methods available to bypass security measures in place. For example, circumvention of **address space randomization (ASLR) or data execution prevention (DEP)** must be performed for the attack to be successful. Obtaining target-specific secrets. The attacker must gather some **target-specific secret** before the attack can be successful. A secret is any piece of information that cannot be obtained through any amount of reconnaissance. To obtain the secret the attacker must perform additional attacks or break otherwise secure measures (e.g. knowledge of a secret key may be needed to break a crypto channel). This operation must be performed for each attacked target. |
 //!
 //! As described in Section 2.1, detailed knowledge of the vulnerable system is outside the scope of Attack Complexity. Refer to that section for additional guidance when scoring Attack Complexity when target-specific attack mitigation is present.
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// Attack Complexity (AC) 攻击复杂度
 ///
 /// 攻击复杂度为攻击者无法控制的条件，这些条件必须存在才能攻击脆弱组件。
 /// 如下文所述，这些条件可能需要预先收集有关目标或系统的配置或计算异常等更多信息。
 ///
 /// > The Attack Complexity metric describes the conditions beyond the attacker's control that must
-/// > exist in order to exploit the vulnerability. As described below, such conditions may require
+/// > exist in order to knowledge_base the vulnerability. As described below, such conditions may require
 /// > the collection of more information about the target, the presence of certain system
 /// > configuration settings, or computational exceptions.
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
@@ -62,8 +64,8 @@ impl Metric for AttackComplexityType {
 
   fn help(&self) -> Help {
     match self {
-      Self::High => {Help{ worth: Worth::Bad, des: "The successful attack depends on the evasion or circumvention of security-enhancing techniques in place that would otherwise hinder the attack. These include: Evasion of exploit mitigation techniques, for example, circumvention of address space randomization (ASLR) or data execution prevention (DEP) must be performed for the attack to be successful; Obtaining target-specific secrets. The attacker must gather some target-specific secret before the attack can be successful. A secret is any piece of information that cannot be obtained through any amount of reconnaissance. To obtain the secret the attacker must perform additional attacks or break otherwise secure measures (e.g. knowledge of a secret key may be needed to break a crypto channel). This operation must be performed for each attacked target.".to_string() }}
-      Self::Low => {Help{ worth: Worth::Worst, des: "The attacker must take no measurable action to exploit the vulnerability. The attack requires no target-specific circumvention to exploit the vulnerability. An attacker can expect repeatable success against the vulnerable system.".to_string() }}
+      Self::High => { Help { worth: Worth::Bad, des: "The successful attack depends on the evasion or circumvention of security-enhancing techniques in place that would otherwise hinder the attack. These include: Evasion of knowledge_base mitigation techniques, for example, circumvention of address space randomization (ASLR) or data execution prevention (DEP) must be performed for the attack to be successful; Obtaining target-specific secrets. The attacker must gather some target-specific secret before the attack can be successful. A secret is any piece of information that cannot be obtained through any amount of reconnaissance. To obtain the secret the attacker must perform additional attacks or break otherwise secure measures (e.g. knowledge of a secret key may be needed to break a crypto channel). This operation must be performed for each attacked target.".to_string() } }
+      Self::Low => { Help { worth: Worth::Worst, des: "The attacker must take no measurable action to knowledge_base the vulnerability. The attack requires no target-specific circumvention to knowledge_base the vulnerability. An attacker can expect repeatable success against the vulnerable system.".to_string() } }
     }
   }
 
diff --git a/nvd-cvss/src/v4/attack_requirements.rs b/nvd-cvss/src/v4/attack_requirements.rs
index 3ab41ef..7be82b7 100644
--- a/nvd-cvss/src/v4/attack_requirements.rs
+++ b/nvd-cvss/src/v4/attack_requirements.rs
@@ -6,23 +6,25 @@
 //!
 //! | **Metric Value** | **Description** |
 //! | --- | --- |
-//! | None (N) | The successful attack does not depend on the deployment and execution conditions of the vulnerable system. The attacker can expect to be able to reach the vulnerability and execute the exploit under all or most instances of the vulnerability. |
-//! | Present (P) | The successful attack depends on the presence of specific deployment and execution conditions of the vulnerable system that enable the attack. These include: A **race condition** must be won to successfully exploit the vulnerability. The successfulness of the attack is conditioned on execution conditions that are not under full control of the attacker. The attack may need to be launched multiple times against a single target before being successful. Network injection. The attacker must inject themselves into the logical network path between the target and the resource requested by the victim (e.g. vulnerabilities requiring an on-path attacker). |
+//! | None (N) | The successful attack does not depend on the deployment and execution conditions of the vulnerable system. The attacker can expect to be able to reach the vulnerability and execute the knowledge_base under all or most instances of the vulnerability. |
+//! | Present (P) | The successful attack depends on the presence of specific deployment and execution conditions of the vulnerable system that enable the attack. These include: A **race condition** must be won to successfully knowledge_base the vulnerability. The successfulness of the attack is conditioned on execution conditions that are not under full control of the attacker. The attack may need to be launched multiple times against a single target before being successful. Network injection. The attacker must inject themselves into the logical network path between the target and the resource requested by the victim (e.g. vulnerabilities requiring an on-path attacker). |
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
+
 /// Attack Complexity (AC) 攻击复杂度
 ///
 /// 攻击复杂度为攻击者无法控制的条件，这些条件必须存在才能攻击脆弱组件。
 /// 如下文所述，这些条件可能需要预先收集有关目标或系统的配置或计算异常等更多信息。
 ///
 /// > The Attack Complexity metric describes the conditions beyond the attacker's control that must
-/// > exist in order to exploit the vulnerability. As described below, such conditions may require
+/// > exist in order to knowledge_base the vulnerability. As described below, such conditions may require
 /// > the collection of more information about the target, the presence of certain system
 /// > configuration settings, or computational exceptions.
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
@@ -60,8 +62,8 @@ impl Metric for AttackRequirementsType {
 
   fn help(&self) -> Help {
     match self {
-      AttackRequirementsType::Present => {Help{ worth: Worth::Bad, des: "The successful attack depends on the presence of specific deployment and execution conditions of the vulnerable system that enable the attack. These include: a race condition must be won to successfully exploit the vulnerability (the successfulness of the attack is conditioned on execution conditions that are not under full control of the attacker, or the attack may need to be launched multiple times against a single target before being successful); the attacker must inject themselves into the logical network path between the target and the resource requested by the victim (e.g. vulnerabilities requiring an on-path attacker).".to_string() }}
-      AttackRequirementsType::None => {Help{ worth: Worth::Worst, des: "The attacker must take no measurable action to exploit the vulnerability. The attack requires no target-specific circumvention to exploit the vulnerability. An attacker can expect repeatable success against the vulnerable system.".to_string() }}
+      AttackRequirementsType::Present => { Help { worth: Worth::Bad, des: "The successful attack depends on the presence of specific deployment and execution conditions of the vulnerable system that enable the attack. These include: a race condition must be won to successfully knowledge_base the vulnerability (the successfulness of the attack is conditioned on execution conditions that are not under full control of the attacker, or the attack may need to be launched multiple times against a single target before being successful); the attacker must inject themselves into the logical network path between the target and the resource requested by the victim (e.g. vulnerabilities requiring an on-path attacker).".to_string() } }
+      AttackRequirementsType::None => { Help { worth: Worth::Worst, des: "The attacker must take no measurable action to knowledge_base the vulnerability. The attack requires no target-specific circumvention to knowledge_base the vulnerability. An attacker can expect repeatable success against the vulnerable system.".to_string() } }
     }
   }
 
diff --git a/nvd-cvss/src/v4/attack_vector.rs b/nvd-cvss/src/v4/attack_vector.rs
index f0e8ec2..b657fce 100644
--- a/nvd-cvss/src/v4/attack_vector.rs
+++ b/nvd-cvss/src/v4/attack_vector.rs
@@ -1,5 +1,5 @@
 //! ### Attack Vector (AV)
-//! This metric reflects the context by which vulnerability exploitation is possible. This metric value (and consequently the resulting severity) will be larger the more remote (logically, and physically) an attacker can be in order to exploit the vulnerable system. The assumption is that the number of potential attackers for a vulnerability that could be exploited from across a network is larger than the number of potential attackers that could exploit a vulnerability requiring physical access to a device, and therefore warrants a greater severity. The list of possible values is presented in Table 1.
+//! This metric reflects the context by which vulnerability exploitation is possible. This metric value (and consequently the resulting severity) will be larger the more remote (logically, and physically) an attacker can be in order to knowledge_base the vulnerable system. The assumption is that the number of potential attackers for a vulnerability that could be exploited from across a network is larger than the number of potential attackers that could knowledge_base a vulnerability requiring physical access to a device, and therefore warrants a greater severity. The list of possible values is presented in Table 1.
 //!
 //! **Table 1: Attack Vector**
 //!
@@ -7,18 +7,20 @@
 //! | --- | --- |
 //! | Network (N) | The vulnerable system is bound to the network stack and the set of possible attackers extends beyond the other options listed below, up to and including the entire Internet. Such a vulnerability is often termed “remotely exploitable” and can be thought of as an attack being exploitable _at the protocol level_ one or more network hops away (e.g., across one or more routers). An example of a network attack is an attacker causing a denial of service (DoS) by sending a specially crafted TCP packet across a wide area network (e.g., CVE-2004-0230). |
 //! | Adjacent (A) | The vulnerable system is bound to a protocol stack, but the attack is limited _at the protocol level_ to a logically adjacent topology. This can mean an attack must be launched from the same shared proximity (e.g., Bluetooth, NFC, or IEEE 802.11) or logical network (e.g., local IP subnet), or from within a secure or otherwise limited administrative domain (e.g., MPLS, secure VPN within an administrative network zone). One example of an Adjacent attack would be an ARP (IPv4) or neighbor discovery (IPv6) flood leading to a denial of service on the local LAN segment (e.g., CVE-2013-6014). |
-//! | Local (L) | The vulnerable system is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either: the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or through terminal emulation (e.g., SSH); _or_ the attacker relies on User Interaction by another person to perform actions required to exploit the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document). |
+//! | Local (L) | The vulnerable system is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either: the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or through terminal emulation (e.g., SSH); _or_ the attacker relies on User Interaction by another person to perform actions required to knowledge_base the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document). |
 //! | Physical (P) | The attack requires the attacker to physically touch or manipulate the vulnerable system. Physical interaction may be brief (e.g., evil maid attack[1](#fn:1)) or persistent. An example of such an attack is a cold boot attack in which an attacker gains access to disk encryption keys after physically accessing the target system. Other examples include peripheral attacks via FireWire/USB Direct Memory Access (DMA). |
 //!
 //! _Assessment Guidance_: When deciding between Network and Adjacent, if an attack can be launched over a wide area network or from outside the logically adjacent administrative network domain, use Network.
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// Attack Vector(AV) 攻击途径
 ///
 /// > 该指标反映了攻击脆弱组件的环境可能。该度量值（以及相应的基本分数）将越大，
@@ -26,7 +28,7 @@ use std::str::FromStr;
 ///
 /// > This metric reflects the context by which vulnerability exploitation is possible.
 /// > This metric value (and consequently the Base score) will be larger the more remote (logically,
-/// > and physically) an attacker can be in order to exploit the vulnerable component.
+/// > and physically) an attacker can be in order to knowledge_base the vulnerable component.
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
 #[serde(rename_all = "SCREAMING_SNAKE_CASE")]
 pub enum AttackVectorType {
@@ -76,7 +78,7 @@ impl Metric for AttackVectorType {
     match self {
       AttackVectorType::Network => {Help{ worth: Worth::Worst, des: "The vulnerable system is bound to the network stack and the set of possible attackers extends beyond the other options listed below, up to and including the entire Internet. Such a vulnerability is often termed “remotely exploitable” and can be thought of as an attack being exploitable at the protocol level one or more network hops away (e.g., across one or more routers).".to_string() }}
       AttackVectorType::AdjacentNetwork => {Help{ worth: Worth::Worse, des: "The vulnerable system is bound to a protocol stack, but the attack is limited at the protocol level to a logically adjacent topology. This can mean an attack must be launched from the same shared proximity (e.g., Bluetooth, NFC, or IEEE 802.11) or logical network (e.g., local IP subnet), or from within a secure or otherwise limited administrative domain (e.g., MPLS, secure VPN within an administrative network zone).".to_string() }}
-      AttackVectorType::Local => {Help{ worth: Worth::Bad, des: "The vulnerable system is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or through terminal emulation (e.g., SSH); or the attacker relies on User Interaction by another person to perform actions required to exploit the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document)./write/execute capabilities. Either: ".to_string() }}
+      AttackVectorType::Local => { Help { worth: Worth::Bad, des: "The vulnerable system is not bound to the network stack and the attacker’s path is via read/write/execute capabilities. Either the attacker exploits the vulnerability by accessing the target system locally (e.g., keyboard, console), or through terminal emulation (e.g., SSH); or the attacker relies on User Interaction by another person to perform actions required to knowledge_base the vulnerability (e.g., using social engineering techniques to trick a legitimate user into opening a malicious document)./write/execute capabilities. Either: ".to_string() } }
       AttackVectorType::Physical => {Help{ worth: Worth::Good, des: "The attack requires the attacker to physically touch or manipulate the vulnerable system. Physical interaction may be brief (e.g., evil maid attack) or persistent./USB Direct Memory Access (DMA).".to_string() }}
     }
   }
diff --git a/nvd-cvss/src/v4/mod.rs b/nvd-cvss/src/v4/mod.rs
index 384bc52..a17559e 100644
--- a/nvd-cvss/src/v4/mod.rs
+++ b/nvd-cvss/src/v4/mod.rs
@@ -5,6 +5,11 @@
 
 // https://github.com/FIRSTdotorg/cvss-v4-calculator/blob/main/cvss_lookup.js
 
+use std::fmt::{Display, Formatter};
+use std::str::FromStr;
+
+use serde::{Deserialize, Serialize};
+
 use crate::error::{CVSSError, Result};
 use crate::metric::Metric;
 use crate::severity::SeverityType;
@@ -30,9 +35,6 @@ use crate::v4::vulnerable_impact_metrics::{
   VulnerableIntegrityImpactType,
 };
 use crate::version::Version;
-use serde::{Deserialize, Serialize};
-use std::fmt::{Display, Formatter};
-use std::str::FromStr;
 
 pub mod attack_complexity;
 pub mod attack_requirements;
@@ -117,7 +119,7 @@ impl ExploitAbility {
 ///
 /// The Common Vulnerability Scoring System (CVSS) captures the principal technical characteristics of software, hardware and firmware vulnerabilities. Its outputs include numerical scores indicating the severity of a vulnerability relative to other vulnerabilities.
 ///
-/// CVSS is composed of three metric groups: Base, Temporal, and Environmental. The Base Score reflects the severity of a vulnerability according to its intrinsic characteristics which are constant over time and assumes the reasonable worst case impact across different deployed environments. The Temporal Metrics adjust the Base severity of a vulnerability based on factors that change over time, such as the availability of exploit code. The Environmental Metrics adjust the Base and Temporal severities to a specific computing environment. They consider factors such as the presence of mitigations in that environment.
+/// CVSS is composed of three metric groups: Base, Temporal, and Environmental. The Base Score reflects the severity of a vulnerability according to its intrinsic characteristics which are constant over time and assumes the reasonable worst case impact across different deployed environments. The Temporal Metrics adjust the Base severity of a vulnerability based on factors that change over time, such as the availability of knowledge_base code. The Environmental Metrics adjust the Base and Temporal severities to a specific computing environment. They consider factors such as the presence of mitigations in that environment.
 ///
 /// Base Scores are usually produced by the organization maintaining the vulnerable product, or a third party scoring on their behalf. It is typical for only the Base Metrics to be published as these do not change over time and are common to all environments. Consumers of CVSS should supplement the Base Score with Temporal and Environmental Scores specific to their use of the vulnerable product to produce a severity more accurate for their organizational environment. Consumers may use CVSS information as input to an organizational vulnerability management process that also considers factors that are not part of CVSS in order to rank the threats to their technology infrastructure and make informed remediation decisions. Such factors may include: number of customers on a product line, monetary losses due to a breach, life or property threatened, or public sentiment on highly publicized vulnerabilities. These are outside the scope of CVSS.
 ///
@@ -506,9 +508,11 @@ fn roundup(input: f32) -> f32 {
 }
 #[cfg(test)]
 mod tests {
-  use crate::v4::{roundup, CVSS};
   use std::collections::HashMap;
   use std::str::FromStr;
+
+  use crate::v4::{CVSS, roundup};
+
   #[test]
   fn roundup_test() {
     assert_eq!(roundup(0.12000), 0.1);
diff --git a/nvd-cvss/src/v4/subsequent_impact_metrics.rs b/nvd-cvss/src/v4/subsequent_impact_metrics.rs
index 19d49f1..4c4cd17 100644
--- a/nvd-cvss/src/v4/subsequent_impact_metrics.rs
+++ b/nvd-cvss/src/v4/subsequent_impact_metrics.rs
@@ -3,7 +3,7 @@
 //!
 //! The Impact metrics capture the effects of a successfully exploited vulnerability. Analysts should constrain impacts to a reasonable, final outcome which they are confident an attacker is able to achieve.
 //!
-//! Only an increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when assessing the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to exploit the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
+//! Only an increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when assessing the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to knowledge_base the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
 //!
 //! Note that when scoring a delta change in impact, the **final impact** should be used. For example, if an attacker starts with partial access to restricted information (Confidentiality Low) and successful exploitation of the vulnerability results in complete loss in confidentiality (Confidentiality High), then the resultant CVSS Base metric value should reference the “end game” Impact metric value (Confidentiality High).
 //!
@@ -16,11 +16,14 @@
 //! All impacts, if any, that occur outside of the vulnerable system should be reflected in the subsequent system impact set. When assessed in the environmental metric group only, the subsequent system impact may, in addition to the logical systems defined for System of Interest, also include impacts to humans. This human impact option in the environmental metric group is explained further in Safety (S), below.
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
+
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
+
 /// ### 2.3.1. Confidentiality Impact(C) 机密性影响
 ///
 /// 该指标衡量成功利用漏洞对软件组件管理的信息资源的机密性的影响程度。机密 是指仅限于授权用户访问和披露的信息，以及防止未授权用户访问或披露的信息。
@@ -83,11 +86,11 @@ pub enum SubsequentIntegrityImpactType {
 ///
 /// | **Metric Value** | **Description** |
 /// | --- | --- |
-/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the Subsequent System; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the Subsequent System (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
+/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the Subsequent System; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the Subsequent System (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
 /// | Low (L) | Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the Subsequent System are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the Subsequent System. |
 /// | None (N) | There is no impact to availability within the Subsequent System or all availability impact is constrained to the Vulnerable System. |
 ///
-/// The Threat metrics measure the current state of exploit techniques or code availability for a vulnerability.
+/// The Threat metrics measure the current state of knowledge_base techniques or code availability for a vulnerability.
 ///
 
 #[derive(Clone, PartialEq, Debug, Deserialize, Serialize)]
@@ -259,7 +262,7 @@ impl Metric for SubsequentAvailabilityImpactType {
 
   fn help(&self) -> Help {
     match self {
-      Self::High => {Help{ worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() }}
+      Self::High => { Help { worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() } }
       Self::Low => {Help{ worth: Worth::Bad, des: "Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component.".to_string() }}
       Self::None => {Help{ worth: Worth::Good, des: "There is no impact to availability within the impacted component.".to_string() }}
     }
diff --git a/nvd-cvss/src/v4/user_interaction.rs b/nvd-cvss/src/v4/user_interaction.rs
index 87affb5..c4fca42 100644
--- a/nvd-cvss/src/v4/user_interaction.rs
+++ b/nvd-cvss/src/v4/user_interaction.rs
@@ -11,12 +11,14 @@
 //! | Active (A) | Successful exploitation of this vulnerability requires a targeted user to perform specific, conscious interactions with the vulnerable system and the attacker’s payload, or the user’s interactions would actively subvert protection mechanisms which would lead to exploitation of the vulnerability. Examples include: importing a file into a vulnerable system in a specific manner placing files into a specific directory prior to executing code submitting a specific string into a web application (e.g. reflected or self XSS) dismiss or accept prompts or security warnings prior to taking an action (e.g. opening/editing a file, connecting a device). |
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
 
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV3, Worth};
+
 /// User Interaction (UI) 用户交互
 ///
 /// 此指标描述攻击脆弱组件对除攻击者之外的用户参与的需求，即确定脆弱组件是仅攻击者本身就可以随意利用，还是需要用户（或用户进程）以某种方式参与。
@@ -66,7 +68,7 @@ impl Metric for UserInteractionType {
 
   fn help(&self) -> Help {
     match self {
-      Self::Passive => {Help{ worth: Worth::Bad, des: "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful exploit may only be possible during the installation of an application by a system administrator.".to_string() }}
+      Self::Passive => { Help { worth: Worth::Bad, des: "Successful exploitation of this vulnerability requires a user to take some action before the vulnerability can be exploited. For example, a successful knowledge_base may only be possible during the installation of an application by a system administrator.".to_string() } }
       Self::None => {Help{ worth: Worth::Worst, des: "The vulnerable system can be exploited without interaction from any human user, other than the attacker.".to_string() }}
       Self::Active=>{Help{ worth: Worth::Worst, des: "Successful exploitation of this vulnerability requires a targeted user to perform specific, conscious interactions with the vulnerable system and the attacker’s payload, or the user’s interactions would actively subvert protection mechanisms which would lead to exploitation of the vulnerability.".to_string() }}
     }
diff --git a/nvd-cvss/src/v4/vulnerable_impact_metrics.rs b/nvd-cvss/src/v4/vulnerable_impact_metrics.rs
index f630522..a1bda59 100644
--- a/nvd-cvss/src/v4/vulnerable_impact_metrics.rs
+++ b/nvd-cvss/src/v4/vulnerable_impact_metrics.rs
@@ -3,7 +3,7 @@
 //!
 //! The Impact metrics capture the effects of a successfully exploited vulnerability. Analysts should constrain impacts to a reasonable, final outcome which they are confident an attacker is able to achieve.
 //!
-//! Only an increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when assessing the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to exploit the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
+//! Only an increase in access, privileges gained, or other negative outcome as a result of successful exploitation should be considered when assessing the Impact metrics of a vulnerability. For example, consider a vulnerability that requires read-only permissions prior to being able to knowledge_base the vulnerability. After successful exploitation, the attacker maintains the same level of read access, and gains write access. In this case, only the Integrity impact metric should be scored, and the Confidentiality and Availability Impact metrics should be set as None.
 //!
 //! Note that when scoring a delta change in impact, the **final impact** should be used. For example, if an attacker starts with partial access to restricted information (Confidentiality Low) and successful exploitation of the vulnerability results in complete loss in confidentiality (Confidentiality High), then the resultant CVSS Base metric value should reference the “end game” Impact metric value (Confidentiality High).
 //!
@@ -16,11 +16,14 @@
 //! All impacts, if any, that occur outside of the vulnerable system should be reflected in the subsequent system impact set. When assessed in the environmental metric group only, the subsequent system impact may, in addition to the logical systems defined for System of Interest, also include impacts to humans. This human impact option in the environmental metric group is explained further in Safety (S), below.
 //!
 
-use crate::error::{CVSSError, Result};
-use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
-use serde::{Deserialize, Serialize};
 use std::fmt::{Display, Formatter};
 use std::str::FromStr;
+
+use serde::{Deserialize, Serialize};
+
+use crate::error::{CVSSError, Result};
+use crate::metric::{Help, Metric, MetricType, MetricTypeV4, Worth};
+
 /// ### Confidentiality (VC/SC) 机密性影响
 ///
 /// 该指标衡量成功利用漏洞对软件组件管理的信息资源的机密性的影响程度。机密 是指仅限于授权用户访问和披露的信息，以及防止未授权用户访问或披露的信息。
@@ -84,7 +87,7 @@ pub enum VulnerableIntegrityImpactType {
 ///
 /// | **Metric Value** | **Description** |
 /// | --- | --- |
-/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the Vulnerable System; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the Vulnerable System (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
+/// | High (H) | There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the Vulnerable System; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the Vulnerable System (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable). |
 /// | Low (L) | Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the Vulnerable System are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the Vulnerable System. |
 /// | None (N) | There is no impact to availability within the Vulnerable System. |
 ///
@@ -258,7 +261,7 @@ impl Metric for VulnerableAvailabilityImpactType {
 
   fn help(&self) -> Help {
     match self {
-      Self::High => {Help{ worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly exploit a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() }}
+      Self::High => { Help { worth: Worth::Worst, des: "There is a total loss of availability, resulting in the attacker being able to fully deny access to resources in the impacted component; this loss is either sustained (while the attacker continues to deliver the attack) or persistent (the condition persists even after the attack has completed). Alternatively, the attacker has the ability to deny some availability, but the loss of availability presents a direct, serious consequence to the impacted component (e.g., the attacker cannot disrupt existing connections, but can prevent new connections; the attacker can repeatedly knowledge_base a vulnerability that, in each instance of a successful attack, leaks a only small amount of memory, but after repeated exploitation causes a service to become completely unavailable).".to_string() } }
       Self::Low => {Help{ worth: Worth::Bad, des: "Performance is reduced or there are interruptions in resource availability. Even if repeated exploitation of the vulnerability is possible, the attacker does not have the ability to completely deny service to legitimate users. The resources in the impacted component are either partially available all of the time, or fully available only some of the time, but overall there is no direct, serious consequence to the impacted component.".to_string() }}
       Self::None => {Help{ worth: Worth::Good, des: "There is no impact to availability within the impacted component.".to_string() }}
     }
diff --git a/nvd-model/src/cve_exploit/db.rs b/nvd-model/src/cve_knowledge_base/db.rs
similarity index 58%
rename from nvd-model/src/cve_exploit/db.rs
rename to nvd-model/src/cve_knowledge_base/db.rs
index 416ed70..8c9deaa 100644
--- a/nvd-model/src/cve_exploit/db.rs
+++ b/nvd-model/src/cve_knowledge_base/db.rs
@@ -1,9 +1,9 @@
 use crate::cve::Cve;
-use crate::cve_exploit::CveExploit;
+use crate::cve_knowledge_base::CveKnowledgeBase;
 use crate::error::{DBError, DBResult};
-use crate::exploit::Exploit;
+use crate::knowledge_base::KnowledgeBase;
 use crate::pagination::ListResponse;
-use crate::schema::{cve_exploit, cves, exploits};
+use crate::schema::{cve_knowledge_base, cves, knowledge_base};
 use crate::DB;
 use diesel::result::{DatabaseErrorKind, Error as DieselError};
 use diesel::{ExpressionMethods, Insertable, MysqlConnection, QueryDsl, RunQueryDsl};
@@ -12,21 +12,21 @@ use serde::{Deserialize, Serialize};
 use utoipa::IntoParams;
 
 #[derive(Insertable, Debug)]
-#[diesel(table_name = cve_exploit)]
-pub struct CreateCveExploit {
+#[diesel(table_name = cve_knowledge_base)]
+pub struct CreateCveKB {
   pub cve_id: String,
-  pub exploit_id: Vec<u8>,
+  pub knowledge_base_id: Vec<u8>,
 }
 
 #[derive(Debug, Serialize, Deserialize)]
-pub struct ExploitInfo {
-  pub exploit: Exploit,
+pub struct KnowledgeBaseInfo {
+  pub kb: KnowledgeBase,
   pub cve: Option<Cve>,
-  pub product: Option<Exploit>,
+  pub product: Option<KnowledgeBase>,
 }
 
 #[derive(Debug)]
-pub struct CreateCveExploitByName {
+pub struct CreateCveKBByName {
   pub cve_id: String,
   pub vendor: String,
   pub product: String,
@@ -34,14 +34,14 @@ pub struct CreateCveExploitByName {
 
 // 返回的CVE产品结构
 #[derive(Debug, Serialize, Deserialize)]
-pub struct CveExploitInfo {
+pub struct CveKBInfo {
   pub cve: Cve,
-  pub exploit: Exploit,
+  pub kb: KnowledgeBase,
 }
 
 #[cfg_attr(feature = "openapi", derive(IntoParams))]
 #[derive(Debug, Serialize, Deserialize, Clone)]
-pub struct QueryCveExploit {
+pub struct QueryCveKB {
   pub cve_id: Option<String>,
   pub vendor: Option<String>,
   pub product: Option<String>,
@@ -49,34 +49,34 @@ pub struct QueryCveExploit {
   pub page: Option<i64>,
 }
 
-impl QueryCveExploit {
+impl QueryCveKB {
   // 查询参数过滤实现,免得写重复的过滤代码
   // https://github.com/diesel-rs/diesel/discussions/3468
   fn query<'a>(
     &'a self,
     _conn: &mut MysqlConnection,
-    mut query: cve_exploit::BoxedQuery<'a, DB>,
-  ) -> DBResult<cve_exploit::BoxedQuery<'a, DB>> {
+    mut query: cve_knowledge_base::BoxedQuery<'a, DB>,
+  ) -> DBResult<cve_knowledge_base::BoxedQuery<'a, DB>> {
     if let Some(id) = &self.cve_id {
-      query = query.filter(cve_exploit::cve_id.eq(id));
+      query = query.filter(cve_knowledge_base::cve_id.eq(id));
     }
     Ok(query)
   }
   fn total(&self, conn: &mut MysqlConnection) -> DBResult<i64> {
-    let query = self.query(conn, cve_exploit::table.into_boxed())?;
+    let query = self.query(conn, cve_knowledge_base::table.into_boxed())?;
     // 统计查询全部，分页用
     Ok(
       query
-        .select(diesel::dsl::count(cve_exploit::cve_id))
+        .select(diesel::dsl::count(cve_knowledge_base::cve_id))
         .first::<i64>(conn)?,
     )
   }
 }
 
-impl CveExploit {
+impl CveKnowledgeBase {
   // 创建CVE和产品关联
-  pub fn create(conn: &mut MysqlConnection, args: &CreateCveExploit) -> DBResult<Self> {
-    if let Err(err) = diesel::insert_into(cve_exploit::table)
+  pub fn create(conn: &mut MysqlConnection, args: &CreateCveKB) -> DBResult<Self> {
+    if let Err(err) = diesel::insert_into(cve_knowledge_base::table)
       .values(args)
       .execute(conn)
     {
@@ -90,24 +90,24 @@ impl CveExploit {
     }
     // mysql 不支持 get_result，要再查一次得到插入结果
     Ok(
-      cve_exploit::dsl::cve_exploit
-        .filter(cve_exploit::cve_id.eq(&args.cve_id))
-        .filter(cve_exploit::exploit_id.eq(&args.exploit_id))
-        .first::<CveExploit>(conn)?,
+      cve_knowledge_base::dsl::cve_knowledge_base
+        .filter(cve_knowledge_base::cve_id.eq(&args.cve_id))
+        .filter(cve_knowledge_base::knowledge_base_id.eq(&args.knowledge_base_id))
+        .first::<CveKnowledgeBase>(conn)?,
     )
   }
   // 根据cve编号获取exp id列表
   pub fn query_by_cve(conn: &mut MysqlConnection, cve_id: String) -> DBResult<Vec<Vec<u8>>> {
-    let args = QueryCveExploit {
+    let args = QueryCveKB {
       cve_id: Some(cve_id),
       vendor: None,
       product: None,
       size: None,
       page: None,
     };
-    let query = args.query(conn, cve_exploit::table.into_boxed())?;
+    let query = args.query(conn, cve_knowledge_base::table.into_boxed())?;
     let result = query
-      .select(cve_exploit::exploit_id)
+      .select(cve_knowledge_base::knowledge_base_id)
       .load::<Vec<u8>>(conn)?;
     Ok(result)
   }
@@ -115,41 +115,41 @@ impl CveExploit {
   pub fn delete(
     conn: &mut MysqlConnection,
     cve_id: String,
-    exploit_id: Vec<u8>,
+    knowledge_base_id: Vec<u8>,
   ) -> DBResult<usize> {
     Ok(
-      diesel::delete(cve_exploit::table)
-        .filter(cve_exploit::cve_id.eq(cve_id))
-        .filter(cve_exploit::exploit_id.eq(exploit_id))
+      diesel::delete(cve_knowledge_base::table)
+        .filter(cve_knowledge_base::cve_id.eq(cve_id))
+        .filter(cve_knowledge_base::knowledge_base_id.eq(knowledge_base_id))
         .execute(conn)?,
     )
   }
   // 根据供应商，产品和CVE编号 返回CVE和产品信息
   pub fn query(
     conn: &mut MysqlConnection,
-    args: &QueryCveExploit,
-  ) -> DBResult<ListResponse<CveExploitInfo, QueryCveExploit>> {
+    args: &QueryCveKB,
+  ) -> DBResult<ListResponse<CveKBInfo, QueryCveKB>> {
     let total = args.total(conn)?;
     // 限制最大分页为20,防止拒绝服务攻击
     let page = args.page.unwrap_or(0);
     let size = std::cmp::min(args.size.to_owned().unwrap_or(10), 10);
     let result = {
-      let exp_ids_query = args.query(conn, cve_exploit::table.into_boxed())?;
-      let exp_ids = exp_ids_query
+      let kb_ids_query = args.query(conn, cve_knowledge_base::table.into_boxed())?;
+      let exp_ids = kb_ids_query
         .offset(page * size)
         .limit(size)
-        .select(cve_exploit::exploit_id)
+        .select(cve_knowledge_base::knowledge_base_id)
         .load::<Vec<u8>>(conn)?;
       // 联表查要把表写在前面，但是这样就用不了query了，所以先查处cve编号列表再eq_any过滤
-      let query = cve_exploit::table
+      let query = cve_knowledge_base::table
         .inner_join(cves::table)
-        .inner_join(exploits::table)
+        .inner_join(knowledge_base::table)
         .into_boxed();
       query
-        .filter(cve_exploit::exploit_id.eq_any(exp_ids))
-        .load::<(CveExploit, Cve, Exploit)>(conn)?
+        .filter(cve_knowledge_base::knowledge_base_id.eq_any(exp_ids))
+        .load::<(CveKnowledgeBase, Cve, KnowledgeBase)>(conn)?
         .into_iter()
-        .map(|(_cp, c, p)| CveExploitInfo { cve: c, exploit: p })
+        .map(|(_cp, c, p)| CveKBInfo { cve: c, kb: p })
         .collect::<Vec<_>>()
     };
     Ok(ListResponse::new(result, total, page, size, args.clone()))
diff --git a/nvd-model/src/cve_exploit/mod.rs b/nvd-model/src/cve_knowledge_base/mod.rs
similarity index 52%
rename from nvd-model/src/cve_exploit/mod.rs
rename to nvd-model/src/cve_knowledge_base/mod.rs
index 918ee42..c0a03a6 100644
--- a/nvd-model/src/cve_exploit/mod.rs
+++ b/nvd-model/src/cve_knowledge_base/mod.rs
@@ -1,16 +1,19 @@
 #[cfg(feature = "db")]
-pub mod db;
+use diesel::{Associations, Identifiable, Queryable, Selectable};
+
 #[cfg(feature = "db")]
 use crate::cve::Cve;
 #[cfg(feature = "db")]
-use crate::exploit::Exploit;
+use crate::knowledge_base::KnowledgeBase;
 #[cfg(feature = "db")]
-use crate::schema::cve_exploit;
+use crate::schema::cve_knowledge_base;
+
 #[cfg(feature = "db")]
-use diesel::{Associations, Identifiable, Queryable, Selectable};
-#[cfg_attr(feature = "db", derive(Queryable, Selectable, Identifiable, Associations),diesel(table_name = cve_exploit,belongs_to(Cve),belongs_to(Exploit),primary_key(cve_id, exploit_id)))]
+pub mod db;
+
+#[cfg_attr(feature = "db", derive(Queryable, Selectable, Identifiable, Associations), diesel(table_name = cve_knowledge_base, belongs_to(Cve), belongs_to(KnowledgeBase), primary_key(cve_id, knowledge_base_id)))]
 #[derive(Debug, PartialEq)]
-pub struct CveExploit {
+pub struct CveKnowledgeBase {
   pub cve_id: String,
-  pub exploit_id: Vec<u8>,
+  pub knowledge_base_id: Vec<u8>,
 }
diff --git a/nvd-model/src/exploit/db.rs b/nvd-model/src/exploit/db.rs
deleted file mode 100644
index 0138033..0000000
--- a/nvd-model/src/exploit/db.rs
+++ /dev/null
@@ -1,195 +0,0 @@
-use std::fmt::{Display, Formatter};
-
-use chrono::NaiveDateTime;
-use diesel::result::{DatabaseErrorKind, Error as DieselError};
-use diesel::{ExpressionMethods, Insertable, MysqlConnection, QueryDsl, RunQueryDsl};
-
-use crate::cve_exploit::CveExploit;
-use crate::error::{DBError, DBResult};
-use crate::exploit::{Exploit, QueryExploit};
-use crate::pagination::ListResponse;
-use crate::schema::{cve_exploit, exploits};
-use crate::types::{AnyValue, MetaData};
-use crate::DB;
-
-#[derive(Clone, Copy)]
-pub enum ExploitSource {
-  ExploitDb,
-  NucleiTemplates,
-  Metasploit,
-}
-
-impl Display for ExploitSource {
-  fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result {
-    match self {
-      ExploitSource::ExploitDb => f.write_str("exploit-db"),
-      ExploitSource::NucleiTemplates => f.write_str("nuclei-templates"),
-      ExploitSource::Metasploit => f.write_str("metasploit"),
-    }
-  }
-}
-
-#[derive(Insertable, Debug, Clone)]
-#[diesel(table_name = exploits)]
-pub struct CreateExploit {
-  pub id: Vec<u8>,
-  pub name: String,
-  pub description: String,
-  pub source: String,
-  pub path: String,
-  pub meta: AnyValue<MetaData>,
-  pub verified: u8,
-  pub created_at: NaiveDateTime,
-  pub updated_at: NaiveDateTime,
-}
-
-impl QueryExploit {
-  // 查询参数过滤实现,免得写重复的过滤代码
-  // https://github.com/diesel-rs/diesel/discussions/3468
-  fn query<'a>(
-    &'a self,
-    conn: &mut MysqlConnection,
-    mut query: exploits::BoxedQuery<'a, DB>,
-  ) -> DBResult<exploits::BoxedQuery<'a, DB>> {
-    // 如果有提供商名称，查询精准名称，返回该提供商旗下全部产品
-    if let Some(source) = &self.source {
-      query = query.filter(exploits::source.eq(source));
-    }
-    if let Some(name) = &self.name {
-      query = query.filter(exploits::name.eq(name));
-    }
-    if let Some(verified) = &self.verified {
-      query = query.filter(exploits::verified.eq(verified));
-    }
-    if let Some(path) = &self.path {
-      query = query.filter(exploits::path.eq(path));
-    }
-    if let Some(cve_id) = &self.cve {
-      // 根据cve编号获取exp id 列表
-      let exp_ids = CveExploit::query_by_cve(conn, cve_id.clone())?;
-      query = query.filter(exploits::id.eq_any(exp_ids));
-    }
-    Ok(query)
-  }
-  fn total(&self, conn: &mut MysqlConnection) -> DBResult<i64> {
-    let query = self.query(conn, exploits::table.into_boxed())?;
-    // 统计查询全部，分页用
-    Ok(
-      query
-        .select(diesel::dsl::count(exploits::id))
-        .first::<i64>(conn)?,
-    )
-  }
-}
-
-impl Exploit {
-  // 创建漏洞利用
-  pub fn create(conn: &mut MysqlConnection, args: &CreateExploit) -> DBResult<Self> {
-    if let Err(err) = diesel::insert_into(exploits::table)
-      .values(args)
-      .execute(conn)
-    {
-      // 重复了，说明已经存在漏洞利用
-      match err {
-        DieselError::DatabaseError(DatabaseErrorKind::UniqueViolation, _) => {}
-        _ => {
-          return Err(DBError::DieselError { source: err });
-        }
-      }
-    }
-    // mysql 不支持 get_result，要再查一次得到插入结果
-    Ok(
-      exploits::dsl::exploits
-        .filter(exploits::name.eq(&args.name))
-        .filter(exploits::source.eq(&args.source))
-        .filter(exploits::path.eq(&args.path))
-        .first::<Exploit>(conn)?,
-    )
-  }
-  pub fn create_or_update(conn: &mut MysqlConnection, args: &CreateExploit) -> DBResult<Self> {
-    if let Err(err) = diesel::insert_into(exploits::table)
-      .values(args)
-      .execute(conn)
-    {
-      // 重复了，说明已经存在EXP
-      return match err {
-        DieselError::DatabaseError(DatabaseErrorKind::UniqueViolation, _) => {
-          // 更新这个EXP
-          let id = diesel::update(
-            exploits::table
-              .filter(exploits::name.eq(&args.name))
-              .filter(exploits::source.eq(&args.source)),
-          )
-          .set((
-            exploits::path.eq(&args.path),
-            exploits::meta.eq(&args.meta),
-            exploits::description.eq(&args.description),
-            exploits::verified.eq(&args.verified),
-            exploits::created_at.eq(&args.created_at),
-            exploits::updated_at.eq(&args.updated_at),
-          ))
-          .execute(conn);
-          match id {
-            Ok(_id) => Self::query_by_name_source(conn, &args.name, &args.source),
-            Err(err) => Err(DBError::DieselError { source: err }),
-          }
-        }
-        _ => Err(DBError::DieselError { source: err }),
-      };
-    }
-    // mysql 不支持 get_result，要再查一次得到插入结果
-    Self::query_by_name_source(conn, &args.name, &args.source)
-  }
-  pub fn delete(conn: &mut MysqlConnection, name: &str, source: ExploitSource) -> DBResult<usize> {
-    let exp = Self::query_by_name_source(conn, name, &source.to_string())?;
-    diesel::delete(cve_exploit::table)
-      .filter(cve_exploit::exploit_id.eq(exp.id))
-      .execute(conn)?;
-    Ok(
-      diesel::delete(exploits::table)
-        .filter(exploits::name.eq(name))
-        .filter(exploits::source.eq(source.to_string()))
-        .execute(conn)?,
-    )
-  }
-  pub fn query_by_name_source(
-    conn: &mut MysqlConnection,
-    name: &str,
-    source: &str,
-  ) -> DBResult<Self> {
-    Ok(
-      exploits::dsl::exploits
-        .filter(exploits::name.eq(name))
-        .filter(exploits::source.eq(source))
-        .first::<Exploit>(conn)?,
-    )
-  }
-  pub fn query_by_cve(conn: &mut MysqlConnection, id: &str) -> DBResult<Vec<Self>> {
-    // 还有在meta里的json过滤存在cve的，没找到json的过滤方法，实在不行就使用sql_query执行原生sql
-    Ok(
-      exploits::dsl::exploits
-        .filter(exploits::name.eq(id))
-        // .or_filter(exploits::meta)
-        .load::<Exploit>(conn)?,
-    )
-  }
-  // 查询exploit信息
-  pub fn query(
-    conn: &mut MysqlConnection,
-    args: &QueryExploit,
-  ) -> DBResult<ListResponse<Exploit, QueryExploit>> {
-    let total = args.total(conn)?;
-    // 限制最大分页为20,防止拒绝服务攻击
-    let page = args.page.unwrap_or(0);
-    let size = std::cmp::min(args.size.to_owned().unwrap_or(10), 10);
-    let result = {
-      let query = args.query(conn, exploits::table.into_boxed())?;
-      query
-        .order(exploits::updated_at.desc())
-        .offset(page * size)
-        .limit(size)
-        .load::<Exploit>(conn)?
-    };
-    Ok(ListResponse::new(result, total, page, size, args.clone()))
-  }
-}
diff --git a/nvd-model/src/exploit/mod.rs b/nvd-model/src/exploit/mod.rs
deleted file mode 100644
index 5c98267..0000000
--- a/nvd-model/src/exploit/mod.rs
+++ /dev/null
@@ -1,43 +0,0 @@
-use chrono::NaiveDateTime;
-#[cfg(feature = "db")]
-use diesel::{Identifiable, Queryable, QueryableByName, Selectable};
-use serde::{Deserialize, Serialize};
-#[cfg(feature = "openapi")]
-use utoipa::{IntoParams, ToSchema};
-
-#[cfg(feature = "db")]
-use crate::schema::exploits;
-use crate::types::AnyValue;
-use crate::types::MetaData;
-
-#[cfg(feature = "db")]
-pub mod db;
-
-#[cfg_attr(feature = "openapi", derive(ToSchema))]
-#[derive(Debug, PartialEq, Serialize, Deserialize, Default, Clone)]
-#[cfg_attr(feature = "db", derive(Queryable, Selectable, Identifiable, QueryableByName), diesel(table_name = exploits))]
-pub struct Exploit {
-  pub id: Vec<u8>,
-  pub name: String,
-  pub description: String,
-  pub source: String,
-  pub path: String,
-  pub meta: AnyValue<MetaData>,
-  pub verified: u8,
-  pub created_at: NaiveDateTime,
-  pub updated_at: NaiveDateTime,
-}
-
-#[cfg_attr(feature = "openapi", derive(IntoParams))]
-#[derive(Debug, Serialize, Deserialize, Clone, Default, PartialEq)]
-pub struct QueryExploit {
-  pub id: Option<Vec<u8>>,
-  pub cve: Option<String>,
-  pub name: Option<String>,
-  pub description: Option<String>,
-  pub source: Option<String>,
-  pub path: Option<String>,
-  pub verified: Option<u8>,
-  pub size: Option<i64>,
-  pub page: Option<i64>,
-}
diff --git a/nvd-model/src/knowledge_base/db.rs b/nvd-model/src/knowledge_base/db.rs
index abbcf3e..c5beb71 100644
--- a/nvd-model/src/knowledge_base/db.rs
+++ b/nvd-model/src/knowledge_base/db.rs
@@ -4,24 +4,44 @@ use chrono::NaiveDateTime;
 use diesel::result::{DatabaseErrorKind, Error as DieselError};
 use diesel::{ExpressionMethods, Insertable, MysqlConnection, QueryDsl, RunQueryDsl};
 
+use crate::cve_knowledge_base::CveKnowledgeBase;
 use crate::error::{DBError, DBResult};
 use crate::knowledge_base::{KnowledgeBase, QueryKnowledgeBase};
 use crate::pagination::ListResponse;
-use crate::schema::knowledge_base;
+use crate::schema::{cve_knowledge_base, knowledge_base};
 use crate::types::{AnyValue, MetaData};
 use crate::DB;
 
 #[derive(Clone, Copy)]
-pub enum KnowledgeBaseSource {
+pub enum KBSource {
+  ExploitDb,
+  NucleiTemplates,
+  Metasploit,
   AttackerKB,
-  // Vulhub,
 }
 
-impl Display for KnowledgeBaseSource {
+#[derive(Clone, Copy)]
+pub enum KBTypes {
+  Exploit,
+  KnowledgeBase,
+}
+
+impl Display for KBTypes {
   fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result {
     match self {
-      KnowledgeBaseSource::AttackerKB => f.write_str("attackerkb"),
-      // KnowledgeBaseSource::Vulhub => f.write_str("vulhub"),
+      KBTypes::Exploit => f.write_str("exploit"),
+      KBTypes::KnowledgeBase => f.write_str("knowledge-base"),
+    }
+  }
+}
+
+impl Display for KBSource {
+  fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result {
+    match self {
+      KBSource::ExploitDb => f.write_str("exploit-db"),
+      KBSource::NucleiTemplates => f.write_str("nuclei-templates"),
+      KBSource::Metasploit => f.write_str("metasploit"),
+      KBSource::AttackerKB => f.write_str("attackerkb"),
     }
   }
 }
@@ -31,10 +51,12 @@ impl Display for KnowledgeBaseSource {
 pub struct CreateKnowledgeBase {
   pub id: Vec<u8>,
   pub name: String,
-  pub description: String,
   pub source: String,
-  pub links: String,
+  pub types: String,
+  pub description: String,
+  pub path: String,
   pub meta: AnyValue<MetaData>,
+  pub verified: u8,
   pub created_at: NaiveDateTime,
   pub updated_at: NaiveDateTime,
 }
@@ -44,7 +66,7 @@ impl QueryKnowledgeBase {
   // https://github.com/diesel-rs/diesel/discussions/3468
   fn query<'a>(
     &'a self,
-    _conn: &mut MysqlConnection,
+    conn: &mut MysqlConnection,
     mut query: knowledge_base::BoxedQuery<'a, DB>,
   ) -> DBResult<knowledge_base::BoxedQuery<'a, DB>> {
     // 如果有提供商名称，查询精准名称，返回该提供商旗下全部产品
@@ -54,12 +76,16 @@ impl QueryKnowledgeBase {
     if let Some(name) = &self.name {
       query = query.filter(knowledge_base::name.eq(name));
     }
-    if let Some(links) = &self.links {
-      query = query.filter(knowledge_base::links.eq(links));
+    if let Some(verified) = &self.verified {
+      query = query.filter(knowledge_base::verified.eq(verified));
+    }
+    if let Some(link) = &self.path {
+      query = query.filter(knowledge_base::path.eq(link));
     }
     if let Some(cve_id) = &self.cve {
-      // 根据cve编号获取kb id 列表
-      query = query.filter(knowledge_base::name.eq(cve_id));
+      // 根据cve编号获取exp id 列表
+      let exp_ids = CveKnowledgeBase::query_by_cve(conn, cve_id.clone())?;
+      query = query.filter(knowledge_base::id.eq_any(exp_ids));
     }
     Ok(query)
   }
@@ -94,7 +120,7 @@ impl KnowledgeBase {
       knowledge_base::dsl::knowledge_base
         .filter(knowledge_base::name.eq(&args.name))
         .filter(knowledge_base::source.eq(&args.source))
-        .filter(knowledge_base::links.eq(&args.links))
+        .filter(knowledge_base::path.eq(&args.path))
         .first::<KnowledgeBase>(conn)?,
     )
   }
@@ -113,12 +139,14 @@ impl KnowledgeBase {
           let id = diesel::update(
             knowledge_base::table
               .filter(knowledge_base::name.eq(&args.name))
+              .filter(knowledge_base::types.eq(&args.types))
               .filter(knowledge_base::source.eq(&args.source)),
           )
           .set((
-            knowledge_base::links.eq(&args.links),
+            knowledge_base::path.eq(&args.path),
             knowledge_base::meta.eq(&args.meta),
             knowledge_base::description.eq(&args.description),
+            knowledge_base::verified.eq(&args.verified),
             knowledge_base::created_at.eq(&args.created_at),
             knowledge_base::updated_at.eq(&args.updated_at),
           ))
@@ -134,11 +162,11 @@ impl KnowledgeBase {
     // mysql 不支持 get_result，要再查一次得到插入结果
     Self::query_by_name_source(conn, &args.name, &args.source)
   }
-  pub fn delete(
-    conn: &mut MysqlConnection,
-    name: &str,
-    source: KnowledgeBaseSource,
-  ) -> DBResult<usize> {
+  pub fn delete(conn: &mut MysqlConnection, name: &str, source: KBSource) -> DBResult<usize> {
+    let kb = Self::query_by_name_source(conn, name, &source.to_string())?;
+    diesel::delete(cve_knowledge_base::table)
+      .filter(cve_knowledge_base::knowledge_base_id.eq(kb.id))
+      .execute(conn)?;
     Ok(
       diesel::delete(knowledge_base::table)
         .filter(knowledge_base::name.eq(name))
@@ -159,13 +187,15 @@ impl KnowledgeBase {
     )
   }
   pub fn query_by_cve(conn: &mut MysqlConnection, id: &str) -> DBResult<Vec<Self>> {
+    // 还有在meta里的json过滤存在cve的，没找到json的过滤方法，实在不行就使用sql_query执行原生sql
     Ok(
       knowledge_base::dsl::knowledge_base
         .filter(knowledge_base::name.eq(id))
+        // .or_filter(knowledge_base::meta)
         .load::<KnowledgeBase>(conn)?,
     )
   }
-  // 查询KnowledgeBase信息
+  // 查询knowledge_base信息
   pub fn query(
     conn: &mut MysqlConnection,
     args: &QueryKnowledgeBase,
diff --git a/nvd-model/src/knowledge_base/mod.rs b/nvd-model/src/knowledge_base/mod.rs
index 50d7e6d..6102593 100644
--- a/nvd-model/src/knowledge_base/mod.rs
+++ b/nvd-model/src/knowledge_base/mod.rs
@@ -19,9 +19,11 @@ pub mod db;
 pub struct KnowledgeBase {
   pub id: Vec<u8>,
   pub name: String,
-  pub description: String,
+  pub types: String,
   pub source: String,
-  pub links: String,
+  pub verified: u8,
+  pub description: String,
+  pub path: String,
   pub meta: AnyValue<MetaData>,
   pub created_at: NaiveDateTime,
   pub updated_at: NaiveDateTime,
@@ -33,9 +35,11 @@ pub struct QueryKnowledgeBase {
   pub id: Option<Vec<u8>>,
   pub cve: Option<String>,
   pub name: Option<String>,
-  pub description: Option<String>,
+  pub types: Option<String>,
   pub source: Option<String>,
-  pub links: Option<String>,
+  pub verified: Option<u8>,
+  pub description: Option<String>,
+  pub path: Option<String>,
   pub size: Option<i64>,
   pub page: Option<i64>,
 }
diff --git a/nvd-model/src/lib.rs b/nvd-model/src/lib.rs
index 3bd2404..0f9fe39 100644
--- a/nvd-model/src/lib.rs
+++ b/nvd-model/src/lib.rs
@@ -1,5 +1,5 @@
 #[cfg(feature = "db")]
-use diesel::{r2d2, r2d2::ConnectionManager, MysqlConnection};
+use diesel::{MysqlConnection, r2d2, r2d2::ConnectionManager};
 
 // wubba lubba dub dub
 // 后端和前端特性不能同时开启
@@ -7,12 +7,11 @@ use diesel::{r2d2, r2d2::ConnectionManager, MysqlConnection};
 // compile_error!("feature \"db\" and feature \"yew\" cannot be enabled at the same time");
 
 pub mod cve;
-pub mod cve_exploit;
+pub mod cve_knowledge_base;
 pub mod cve_product;
 pub mod cwe;
 #[cfg(feature = "db")]
 pub mod error;
-pub mod exploit;
 pub mod knowledge_base;
 pub mod pagination;
 pub mod product;
diff --git a/nvd-model/src/schema.rs b/nvd-model/src/schema.rs
index 861f9de..8c6de30 100644
--- a/nvd-model/src/schema.rs
+++ b/nvd-model/src/schema.rs
@@ -10,11 +10,11 @@ diesel::table! {
 }
 
 diesel::table! {
-    cve_exploit (cve_id, exploit_id) {
+    cve_knowledge_base (cve_id, knowledge_base_id) {
         #[max_length = 16]
         cve_id -> Varchar,
         #[max_length = 16]
-        exploit_id -> Binary,
+        knowledge_base_id -> Binary,
     }
 }
 
@@ -81,34 +81,19 @@ diesel::table! {
 }
 
 diesel::table! {
-    exploits (id) {
+    knowledge_base (id) {
         #[max_length = 16]
         id -> Binary,
         #[max_length = 128]
         name -> Varchar,
-        description -> Text,
+        #[max_length = 32]
+        types -> Varchar,
         #[max_length = 32]
         source -> Varchar,
-        #[max_length = 512]
-        path -> Varchar,
-        meta -> Json,
         verified -> Unsigned<Tinyint>,
-        created_at -> Timestamp,
-        updated_at -> Timestamp,
-    }
-}
-
-diesel::table! {
-    knowledge_base (id) {
-        #[max_length = 16]
-        id -> Binary,
-        #[max_length = 128]
-        name -> Varchar,
         description -> Text,
-        #[max_length = 32]
-        source -> Varchar,
         #[max_length = 512]
-        links -> Varchar,
+        path -> Varchar,
         meta -> Json,
         created_at -> Timestamp,
         updated_at -> Timestamp,
@@ -118,17 +103,15 @@ diesel::table! {
 diesel::joinable!(cve_product -> cves (cve_id));
 diesel::joinable!(cve_product -> products (product_id));
 diesel::joinable!(products -> vendors (vendor_id));
-diesel::joinable!(knowledge_base -> cves (name));
-diesel::joinable!(cve_exploit -> cves (cve_id));
-diesel::joinable!(cve_exploit -> exploits (exploit_id));
+diesel::joinable!(cve_knowledge_base -> cves (cve_id));
+diesel::joinable!(cve_knowledge_base -> knowledge_base (knowledge_base_id));
 
 diesel::allow_tables_to_appear_in_same_query!(
   cve_product,
   cves,
   cwes,
-  exploits,
   products,
   vendors,
-  cve_exploit,
+  cve_knowledge_base,
   knowledge_base,
 );
diff --git a/nvd-server/src/api/exploit_api.rs b/nvd-server/src/api/exploit_api.rs
deleted file mode 100644
index 49481b2..0000000
--- a/nvd-server/src/api/exploit_api.rs
+++ /dev/null
@@ -1,19 +0,0 @@
-use crate::{ApiResponse, Pool};
-use actix_web::{get, web, HttpResponse};
-use nvd_model::exploit::{Exploit, QueryExploit};
-use std::ops::DerefMut;
-
-#[cfg_attr(feature = "openapi", utoipa::path(
-context_path = "/api/exp",
-params(QueryExploit),
-responses((status = 200, description = "List exp items"))
-))]
-#[get("/")]
-async fn api_exp_list(args: web::Query<QueryExploit>, pool: web::Data<Pool>) -> ApiResponse {
-  let contact = web::block(move || {
-    let mut conn = pool.get()?;
-    Exploit::query(conn.deref_mut(), &args)
-  })
-  .await??;
-  Ok(HttpResponse::Ok().json(contact))
-}
diff --git a/nvd-server/src/api/mod.rs b/nvd-server/src/api/mod.rs
index 91de67c..d026b26 100644
--- a/nvd-server/src/api/mod.rs
+++ b/nvd-server/src/api/mod.rs
@@ -1,18 +1,17 @@
 use std::ops::DerefMut;
 
-use actix_web::{get, web, HttpRequest, HttpResponse};
+use actix_web::{get, HttpRequest, HttpResponse, web};
 #[cfg(feature = "openapi")]
 use utoipa::OpenApi;
 
-use nvd_model::cve::{Cve, QueryCve};
 #[cfg(feature = "openapi")]
 use nvd_model::{cwe::Cwe, product::Product, vendor::Vendor};
+use nvd_model::cve::{Cve, QueryCve};
 
 use crate::{ApiResponse, Pool};
 
 mod cve_api;
 mod cwe_api;
-mod exploit_api;
 mod kb_api;
 mod product_api;
 mod vendor_api;
@@ -28,7 +27,6 @@ cwe_api::api_cwe_list,
 product_api::api_product_list,
 vendor_api::api_vendor_name,
 vendor_api::api_vendor_list,
-exploit_api::api_exp_list,
 kb_api::api_kb_list,
 ),
 components(schemas(Cve, Cwe, Product, Vendor)),
@@ -64,7 +62,6 @@ pub fn api_route(cfg: &mut web::ServiceConfig) {
         .service(cve_api::api_cve_id)
         .service(cve_api::api_cve_list),
     )
-    .service(web::scope("exp").service(exploit_api::api_exp_list))
     .service(web::scope("kb").service(kb_api::api_kb_list))
     .service(
       web::scope("vendor")
diff --git a/nvd-yew/src/component/exp_query.rs b/nvd-yew/src/component/exp_query.rs
deleted file mode 100644
index 8e264a6..0000000
--- a/nvd-yew/src/component/exp_query.rs
+++ /dev/null
@@ -1,126 +0,0 @@
-use nvd_model::exploit::QueryExploit;
-use web_sys::{HtmlButtonElement, HtmlInputElement};
-use yew::prelude::*;
-
-// CVE表过滤和查询回调函数
-#[derive(PartialEq, Clone, Properties)]
-pub struct EXPQueryProps {
-  pub props: QueryExploit,
-  #[prop_or_default]
-  pub is_verified: Option<bool>,
-  pub query_source: Callback<MouseEvent>,
-  pub query: Callback<QueryExploit>,
-}
-
-pub struct EXPQuery;
-
-impl Component for EXPQuery {
-  type Message = ();
-  type Properties = EXPQueryProps;
-
-  fn create(_ctx: &Context<Self>) -> Self {
-    Self
-  }
-
-  fn view(&self, ctx: &Context<Self>) -> Html {
-    // let is_verified = ctx.props().is_verified.unwrap_or_default();
-    let query = ctx.props().props.clone();
-    let query_source = ctx.props().query_source.clone();
-    let source_input = NodeRef::default();
-    let name_input = NodeRef::default();
-    let search_input = NodeRef::default();
-    let submit_button = NodeRef::default();
-    // 点击的是b标签，但是事件冒泡会将事件传到按钮
-    let on_submit = {
-      let source_input = source_input.clone();
-      let name_input = name_input.clone();
-      let query = query.clone();
-      let query_callback = ctx.props().query.clone();
-      Callback::from(move |event: SubmitEvent| {
-        event.prevent_default();
-        let source = source_input.cast::<HtmlInputElement>().unwrap().value();
-        let cve = name_input
-          .cast::<HtmlInputElement>()
-          .unwrap()
-          .value()
-          .trim()
-          .to_string();
-        // let search = search_input.cast::<HtmlInputElement>().unwrap().value();
-        query_callback.emit(QueryExploit {
-          id: None,
-          cve: None,
-          name: if cve.is_empty() { None } else { Some(cve) },
-          description: None,
-          source: if source.is_empty() {
-            None
-          } else {
-            Some(source)
-          },
-          size: query.size,
-          page: query.page,
-          verified: None,
-          path: None,
-        })
-      })
-    };
-    let clean = {
-      let source_input = source_input.clone();
-      let name_input = name_input.clone();
-      let search_input = search_input.clone();
-      let submit_button = submit_button.clone();
-      Callback::from(move |event: MouseEvent| {
-        let target = event
-          .target_unchecked_into::<HtmlButtonElement>()
-          .parent_element()
-          .unwrap();
-        let v = target.get_attribute("value").unwrap_or_default();
-        match v.as_str() {
-          "source_input" => {
-            source_input
-              .cast::<HtmlInputElement>()
-              .unwrap()
-              .set_value("");
-          }
-          "name_input" => {
-            name_input.cast::<HtmlInputElement>().unwrap().set_value("");
-          }
-          "search_input" => {
-            search_input
-              .cast::<HtmlInputElement>()
-              .unwrap()
-              .set_value("");
-          }
-          _ => {}
-        }
-        submit_button.cast::<HtmlButtonElement>().unwrap().click();
-      })
-    };
-    html! {
-    <div class="card-body border-bottom py-1">
-      <div class="d-flex">
-        <form class="row g-1 d-flex" onsubmit={on_submit}>
-          <div class="col input-icon input-group input-group-flat text-muted">
-            <input type="text" class="form-control"  aria-label="name" placeholder="Name" ref={name_input} value={query.name.clone()}/>
-            <button class="input-group-text" onclick={clean.clone()} value="name_input"><i class="ti ti-x link-danger"></i></button>
-          </div>
-          <div class="col input-group input-group-flat">
-            <button type="button" class="btn dropdown-toggle" data-bs-toggle="dropdown" aria-haspopup="true" aria-expanded="false">
-              {"Source"}
-            </button>
-            <ul class="dropdown-menu">
-              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-secondary btn-sm"  value="none">{"none"}</button></li>
-              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-yellow btn-sm" value="exploit-db">{"exploit-db"}</button></li>
-              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-azure btn-sm" value="nuclei-templates">{"nuclei-templates"}</button></li>
-            </ul>
-          <input type="text" class="form-control" readonly=true ref={source_input} value={query.source.clone()}/>
-          <button class="input-group-text" onclick={clean.clone()} value="source_input"><i class="ti ti-x link-danger"></i></button>
-          </div>
-        <div class="col-auto d-flex">
-        <button class="btn" type="submit" ref={submit_button}><i class="ti ti-search"></i></button>
-        </div>
-        </form>
-      </div>
-    </div>
-        }
-  }
-}
diff --git a/nvd-yew/src/component/exp_row.rs b/nvd-yew/src/component/exp_row.rs
deleted file mode 100644
index 80f44ae..0000000
--- a/nvd-yew/src/component/exp_row.rs
+++ /dev/null
@@ -1,100 +0,0 @@
-use yew::prelude::*;
-use yew_router::prelude::*;
-
-use nvd_model::exploit::Exploit;
-
-use crate::routes::Route;
-
-// 供应商，产品回调
-#[derive(PartialEq, Clone, Properties)]
-pub struct ExpProps {
-  pub props: Exploit,
-}
-
-pub struct EXPRow;
-
-impl Component for EXPRow {
-  type Message = ();
-  type Properties = ExpProps;
-
-  fn create(_ctx: &Context<Self>) -> Self {
-    Self
-  }
-
-  fn view(&self, ctx: &Context<Self>) -> Html {
-    let ExpProps { props, .. } = ctx.props().clone();
-    let update = props.updated_at.to_string();
-    let name = props.name;
-    let path = props.path.clone();
-    let source = props.source.clone();
-    let meta = props.meta.clone();
-    let is_verified = props.verified;
-    let description = if props.description.is_empty() {
-      String::from("N/A")
-    } else {
-      props.description
-    };
-    let disabled_open = !name.starts_with("CVE-");
-    html! {
-    <>
-        <tr class="table-group-divider">
-          <th scope="row" rowspan="2">
-          {if !disabled_open{
-            html!{
-            <Link<Route> disabled={disabled_open} classes={classes!(["text-reset", "text-nowrap"])} to={Route::Cve{id:{name.clone()}}}>
-             <i class="ti ti-external-link"></i>{name.clone()}
-            </Link<Route>>
-            }
-          }else{
-            html!{<span classes={classes!(["text-reset", "text-nowrap"])}>{name.clone()}</span>}
-          }}
-          </th>
-          <td class="w-25 text-truncate text-nowrap">{self.source(&source)}</td>
-          <td class="w-25 text-truncate text-nowrap">{self.verified(is_verified)}</td>
-          <td class="w-25 text-truncate text-nowrap">{self.path(&source,&name,&path)}</td>
-          <td class="w-25 text-truncate text-nowrap">{format!("{:?}",meta)}</td>
-          <td class="w-25 text-truncate text-nowrap">
-            {update}
-          </td>
-        </tr>
-        <tr class="table-success">
-          <th scope="row" colspan="7" class="table table-active text-truncate" style="max-width: 150px;">{description}</th>
-        </tr>
-    </>
-    }
-  }
-}
-
-impl EXPRow {
-  fn verified(&self, is_verified: u8) -> Html {
-    if is_verified == 1 {
-      html! {<div><span class="badge bg-green"><i class="ti ti-check"></i>{"Verified"}</span></div>}
-    } else {
-      html! {<div><span class="badge bg-red"><i class="ti ti-x"></i>{"Not verified"}</span></div>}
-    }
-  }
-  fn path(&self, source: &str, name: &str, path: &str) -> Html {
-    let exploit_url = match source {
-      "exploit-db" => format!("https://www.exploit-db.com/exploits/{}", name),
-      "nuclei-templates" => format!(
-        "https://github.com/projectdiscovery/nuclei-templates/blob/main/{}",
-        path
-      ),
-      _ => String::new(),
-    };
-    html! {<div><a href={exploit_url} class="text-reset text-nowrap" target="_blank" rel="noreferrer"><i class="ti ti-external-link"></i>{path}</a></div>}
-  }
-  fn source(&self, source: &str) -> Html {
-    match source {
-      "exploit-db" => {
-        html! {<div><span class="badge bg-yellow"><i class="ti ti-bug"></i>{source}</span></div>}
-      }
-      "nuclei-templates" => {
-        html! {<div><span class="badge bg-azure"><i class="ti ti-storm"></i>{source}</span></div>}
-      }
-      _ => {
-        html! {<div><span class="badge bg-green"><i class="ti ti-check"></i>{source}</span></div>}
-      }
-    }
-  }
-}
diff --git a/nvd-yew/src/component/exploit.rs b/nvd-yew/src/component/exploit.rs
deleted file mode 100644
index 7ed5482..0000000
--- a/nvd-yew/src/component/exploit.rs
+++ /dev/null
@@ -1,106 +0,0 @@
-use yew::prelude::*;
-
-use nvd_model::exploit::{Exploit, QueryExploit};
-
-use crate::component::{EXPRow, ExpProps};
-use crate::console_log;
-use crate::modules::Paging;
-use crate::services::exp::exploit_list;
-use crate::services::FetchState;
-
-#[derive(Default)]
-pub struct CVEExploitInfoList {
-  pub result: Vec<Exploit>,
-  pub paging: Paging,
-  pub query: QueryExploit,
-}
-
-#[derive(PartialEq, Clone, Properties)]
-pub struct IDProps {
-  pub id: String,
-}
-
-#[allow(clippy::large_enum_variant)]
-pub enum Msg {
-  SetFetchState(FetchState<CVEExploitInfoList>),
-  Send,
-}
-
-impl Component for CVEExploitInfoList {
-  type Message = Msg;
-  type Properties = IDProps;
-
-  fn create(_ctx: &Context<Self>) -> Self {
-    CVEExploitInfoList::default()
-  }
-
-  fn update(&mut self, ctx: &Context<Self>, msg: Self::Message) -> bool {
-    match msg {
-      Msg::SetFetchState(state) => {
-        match state {
-          FetchState::Success(data) => {
-            self.result = data.result;
-            return true;
-          }
-          FetchState::Failed(err) => {
-            console_log!("{:?}", err);
-          }
-        }
-        return true;
-      }
-      Msg::Send => {
-        let q = QueryExploit {
-          cve: Some(ctx.props().id.clone()),
-          ..self.query.clone()
-        };
-        ctx.link().send_future(async move {
-          match exploit_list(q).await {
-            Ok(data) => {
-              let data = CVEExploitInfoList {
-                result: data.result,
-                paging: data.paging,
-                query: data.query,
-              };
-              Msg::SetFetchState(FetchState::Success(data))
-            }
-            Err(err) => Msg::SetFetchState(FetchState::Failed(err)),
-          }
-        });
-      }
-    }
-    false
-  }
-  fn view(&self, _ctx: &Context<Self>) -> Html {
-    let exploits = self.result.clone();
-    if !exploits.is_empty() {
-      return html! {
-      <div class="table-responsive">
-        <table class="table table-vcenter card-table table-striped">
-            <thead>
-              <tr>
-                <th scope="col">{"Name"}</th>
-                <th scope="col">{"Source"}</th>
-                <th scope="col">{"Verified"}</th>
-                <th scope="col">{"Path"}</th>
-                <th scope="col">{"Meta"}</th>
-                <th scope="col">{"Updated"}</th>
-              </tr>
-            </thead>
-          <tbody>
-          {exploits.into_iter().map(|e|{
-            let p = ExpProps{props:e.clone()};
-            html!{<EXPRow ..p/>}
-          }).collect::<Html>()}
-          </tbody>
-        </table>
-      </div>
-      };
-    }
-    html!()
-  }
-  fn rendered(&mut self, ctx: &Context<Self>, first_render: bool) {
-    if first_render {
-      ctx.link().send_message(Msg::Send);
-    }
-  }
-}
diff --git a/nvd-yew/src/component/kb_query.rs b/nvd-yew/src/component/kb_query.rs
index fc380ec..5a1b659 100644
--- a/nvd-yew/src/component/kb_query.rs
+++ b/nvd-yew/src/component/kb_query.rs
@@ -59,7 +59,9 @@ impl Component for KBQuery {
           },
           size: query.size,
           page: query.page,
-          links: None,
+          verified: None,
+          path: None,
+          types: None,
         })
       })
     };
@@ -109,7 +111,10 @@ impl Component for KBQuery {
             </button>
             <ul class="dropdown-menu">
               <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-secondary btn-sm"  value="none">{"none"}</button></li>
-              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-blue btn-sm" value="attackerkb">{"metasploit"}</button></li>
+              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-yellow btn-sm" value="exploit-db">{"exploit-db"}</button></li>
+              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-vk btn-sm" value="attackerkb">{"attackerkb"}</button></li>
+              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-orange btn-sm" value="metasploit">{"metasploit"}</button></li>
+              <li><button onclick={query_source.clone()} type="button" class="dropdown-item btn bg-azure btn-sm" value="nuclei-templates">{"nuclei-templates"}</button></li>
             </ul>
           <input type="text" class="form-control" readonly=true ref={source_input} value={query.source.clone()}/>
           <button class="input-group-text" onclick={clean.clone()} value="source_input"><i class="ti ti-x link-danger"></i></button>
diff --git a/nvd-yew/src/component/kb_row.rs b/nvd-yew/src/component/kb_row.rs
index c907679..9a5cc01 100644
--- a/nvd-yew/src/component/kb_row.rs
+++ b/nvd-yew/src/component/kb_row.rs
@@ -25,24 +25,33 @@ impl Component for KBRow {
     let KbProps { props, .. } = ctx.props().clone();
     let update = props.updated_at.to_string();
     let name = props.name;
-    let links = props.links.clone();
+    let path = props.path.clone();
     let source = props.source.clone();
     let meta = props.meta.clone();
+    let is_verified = props.verified;
     let description = if props.description.is_empty() {
       String::from("N/A")
     } else {
       props.description
     };
+    let disabled_open = !name.starts_with("CVE-");
     html! {
     <>
         <tr class="table-group-divider">
           <th scope="row" rowspan="2">
-            <Link<Route> classes={classes!(["text-reset", "text-nowrap"])} to={Route::Cve{id:{name.clone()}}}>
+          {if !disabled_open{
+            html!{
+            <Link<Route> disabled={disabled_open} classes={classes!(["text-reset", "text-nowrap"])} to={Route::Cve{id:{name.clone()}}}>
              <i class="ti ti-external-link"></i>{name.clone()}
             </Link<Route>>
+            }
+          }else{
+            html!{<span classes={classes!(["text-reset", "text-nowrap"])}>{name.clone()}</span>}
+          }}
           </th>
           <td class="w-25 text-truncate text-nowrap">{self.source(&source)}</td>
-          <td class="w-25 text-truncate text-nowrap">{self.links(&source,&name,&links)}</td>
+          <td class="w-25 text-truncate text-nowrap">{self.verified(is_verified)}</td>
+          <td class="w-25 text-truncate text-nowrap">{self.path(&source,&name,&path)}</td>
           <td class="w-25 text-truncate text-nowrap">{format!("{:?}",meta)}</td>
           <td class="w-25 text-truncate text-nowrap">
             {update}
@@ -57,17 +66,31 @@ impl Component for KBRow {
 }
 
 impl KBRow {
-  fn links(&self, source: &str, _name: &str, links: &str) -> Html {
+  fn verified(&self, is_verified: u8) -> Html {
+    if is_verified == 1 {
+      html! {<div><span class="badge bg-green"><i class="ti ti-check"></i>{"Verified"}</span></div>}
+    } else {
+      html! {<div><span class="badge bg-red"><i class="ti ti-x"></i>{"Not verified"}</span></div>}
+    }
+  }
+  fn path(&self, source: &str, name: &str, path: &str) -> Html {
     let kb_url = match source {
-      "attackerkb" => links.to_string(),
+      "exploit-db" => format!("https://www.exploit-db.com/exploits/{}", name),
+      "nuclei-templates" => format!(
+        "https://github.com/projectdiscovery/nuclei-templates/blob/main/{}",
+        path
+      ),
       _ => String::new(),
     };
-    html! {<div><a href={kb_url} class="text-reset text-nowrap" target="_blank" rel="noreferrer"><i class="ti ti-external-link"></i>{links}</a></div>}
+    html! {<div><a href={kb_url} class="text-reset text-nowrap" target="_blank" rel="noreferrer"><i class="ti ti-external-link"></i>{path}</a></div>}
   }
   fn source(&self, source: &str) -> Html {
     match source {
-      "attackerkb" => {
-        html! {<div><span class="badge bg-vk"><i class="ti ti-bug"></i>{source}</span></div>}
+      "exploit-db" => {
+        html! {<div><span class="badge bg-yellow"><i class="ti ti-bug"></i>{source}</span></div>}
+      }
+      "nuclei-templates" => {
+        html! {<div><span class="badge bg-azure"><i class="ti ti-storm"></i>{source}</span></div>}
       }
       _ => {
         html! {<div><span class="badge bg-green"><i class="ti ti-check"></i>{source}</span></div>}
diff --git a/nvd-yew/src/component/knowledge_base.rs b/nvd-yew/src/component/knowledge_base.rs
index bba0504..0f86139 100644
--- a/nvd-yew/src/component/knowledge_base.rs
+++ b/nvd-yew/src/component/knowledge_base.rs
@@ -2,11 +2,11 @@ use yew::prelude::*;
 
 use nvd_model::knowledge_base::{KnowledgeBase, QueryKnowledgeBase};
 
-use crate::component::{KBRow, KbProps};
+use crate::component::{KbProps, KBRow};
 use crate::console_log;
 use crate::modules::Paging;
-use crate::services::kb::knowledge_base_list;
 use crate::services::FetchState;
+use crate::services::kb::knowledge_base_list;
 
 #[derive(Default)]
 pub struct CVEKnowledgeBaseInfoList {
@@ -80,7 +80,7 @@ impl Component for CVEKnowledgeBaseInfoList {
               <tr>
                 <th scope="col">{"Name"}</th>
                 <th scope="col">{"Source"}</th>
-                <th scope="col">{"Links"}</th>
+                <th scope="col">{"Path"}</th>
                 <th scope="col">{"Meta"}</th>
                 <th scope="col">{"Updated"}</th>
               </tr>
diff --git a/nvd-yew/src/component/mod.rs b/nvd-yew/src/component/mod.rs
index 1378a7a..6c6e795 100644
--- a/nvd-yew/src/component/mod.rs
+++ b/nvd-yew/src/component/mod.rs
@@ -1,16 +1,13 @@
 pub use accordion::Accordion;
 pub use comments::Comments;
 pub use cpe_query::{CPEQuery, CPEQueryProps};
-pub use cpe_row::{CPERow, CpeProps};
+pub use cpe_row::{CpeProps, CPERow};
 pub use cve_configuration::{CVEConfiguration, CVEConfigurationProps};
 pub use cve_query::{CVEQuery, CVEQueryProps};
-pub use cve_row::{CVERow, CveProps};
+pub use cve_row::{CveProps, CVERow};
 pub use cvss::{CVSS2, CVSS3};
-pub use exp_query::{EXPQuery, EXPQueryProps};
-pub use exp_row::{EXPRow, ExpProps};
-pub use exploit::CVEExploitInfoList;
 pub use kb_query::{KBQuery, KBQueryProps};
-pub use kb_row::{KBRow, KbProps};
+pub use kb_row::{KbProps, KBRow};
 pub use knowledge_base::CVEKnowledgeBaseInfoList;
 pub use pagination::{Pagination, PaginationProps};
 pub use tooltip_popover::TooltipPopover;
@@ -25,9 +22,6 @@ mod cve_query;
 mod cve_row;
 mod cvss;
 pub mod cvss_tags;
-mod exp_query;
-mod exp_row;
-mod exploit;
 mod kb_query;
 mod kb_row;
 mod knowledge_base;
diff --git a/nvd-yew/src/layout/nav.rs b/nvd-yew/src/layout/nav.rs
index 7e15008..94e2d7b 100644
--- a/nvd-yew/src/layout/nav.rs
+++ b/nvd-yew/src/layout/nav.rs
@@ -42,7 +42,6 @@ impl Component for Nav {
           Route::Cve { id } => id,
           Route::CveList => String::from("CVE"),
           Route::Cpe => String::from("CPE"),
-          Route::Exp => String::from("EXP"),
           Route::Kb => String::from("KB"),
           Route::Home => String::from("Home"),
           Route::NotFound => String::from("NotFound"),
@@ -93,12 +92,6 @@ impl Component for Nav {
                   <span class="nav-link-title">{"CPE"}</span>
                 </Link<Route>>
               </li>
-              <li class="nav-item">
-                <Link<Route> classes={classes!("nav-link")} to={Route::Exp}>
-                  <span class="nav-link-icon d-md-none d-lg-inline-block ti ti-code"></span>
-                  <span class="nav-link-title">{"EXP"}</span>
-                </Link<Route>>
-              </li>
               <li class="nav-item">
                 <Link<Route> classes={classes!("nav-link")} to={Route::Kb}>
                   <span class="nav-link-icon d-md-none d-lg-inline-block ti ti-book"></span>
diff --git a/nvd-yew/src/routes/cve.rs b/nvd-yew/src/routes/cve.rs
index d05c38b..3b03476 100644
--- a/nvd-yew/src/routes/cve.rs
+++ b/nvd-yew/src/routes/cve.rs
@@ -5,11 +5,11 @@ use yew_router::prelude::*;
 
 use nvd_model::cve::Cve;
 
-use crate::component::cvss_tags::{cvss2, cvss3};
 use crate::component::{
-  Accordion, CVEConfiguration, CVEConfigurationProps, CVEExploitInfoList, CVEKnowledgeBaseInfoList,
-  CWEDetails, Comments, CVSS2, CVSS3,
+  Accordion, Comments, CVEConfiguration, CVEConfigurationProps, CVEKnowledgeBaseInfoList,
+  CVSS2, CVSS3, CWEDetails,
 };
+use crate::component::cvss_tags::{cvss2, cvss3};
 use crate::console_log;
 use crate::error::Error;
 use crate::routes::Route;
@@ -122,7 +122,6 @@ impl Component for CVEDetails {
         {self.cvss(cve.clone())}
         {self.references(&cve.references)}
         {self.weaknesses(&cve.weaknesses)}
-        {self.exploit(&cve.id)}
         {self.knowledge_base(&cve.id)}
         {self.configurations(&cve.configurations)}
         <Comments/>
@@ -267,13 +266,6 @@ impl CVEDetails {
       </Accordion>
     }
   }
-  fn exploit(&self, id: &str) -> Html {
-    html! {
-      <Accordion name={"Exploits"}>
-      <CVEExploitInfoList id={id.to_string()}/>
-      </Accordion>
-    }
-  }
   fn knowledge_base(&self, id: &str) -> Html {
     html! {
       <Accordion name={"KnowledgeBase"}>
diff --git a/nvd-yew/src/routes/exp.rs b/nvd-yew/src/routes/exp.rs
deleted file mode 100644
index 7bd81fc..0000000
--- a/nvd-yew/src/routes/exp.rs
+++ /dev/null
@@ -1,188 +0,0 @@
-use std::str::FromStr;
-
-use crate::modules::ListResponse;
-use nvd_model::exploit::{Exploit, QueryExploit};
-use wasm_bindgen::JsCast;
-use web_sys::{EventTarget, HtmlButtonElement};
-use yew::prelude::*;
-use yew_router::prelude::*;
-
-use crate::component::{EXPQuery, EXPQueryProps, EXPRow, ExpProps, Pagination, PaginationProps};
-use crate::console_log;
-use crate::routes::Route;
-use crate::services::exp::exploit_list;
-use crate::services::FetchState;
-
-pub type ExploitInfoList = ListResponse<Exploit, QueryExploit>;
-
-pub enum Msg {
-  SetFetchState(FetchState<ExploitInfoList>),
-  Send,
-  Page(PageMsg),
-  Query(QueryMsg),
-}
-
-pub enum PageMsg {
-  Next,
-  Prev,
-  To(i64),
-}
-
-pub enum QueryMsg {
-  Query(QueryExploit),
-  Source(String),
-}
-
-impl Component for ExploitInfoList {
-  type Message = Msg;
-  type Properties = ();
-
-  fn create(ctx: &Context<Self>) -> Self {
-    let query = ctx
-      .link()
-      .location()
-      .unwrap()
-      .query::<QueryExploit>()
-      .unwrap();
-    ExploitInfoList {
-      query,
-      ..ExploitInfoList::default()
-    }
-  }
-  fn update(&mut self, ctx: &Context<Self>, msg: Self::Message) -> bool {
-    match msg {
-      Msg::SetFetchState(FetchState::Success(cil)) => {
-        self.query.page = Some(cil.paging.page);
-        self.query.size = Some(cil.paging.size);
-        self.paging = cil.paging;
-        self.result = cil.result;
-        return true;
-      }
-      Msg::SetFetchState(FetchState::Failed(err)) => {
-        console_log!("{}", err);
-      }
-      Msg::Send => {
-        let q = self.query.clone();
-        ctx.link().send_future(async {
-          match exploit_list(q).await {
-            Ok(data) => Msg::SetFetchState(FetchState::Success(data)),
-            Err(err) => Msg::SetFetchState(FetchState::Failed(err)),
-          }
-        });
-      }
-      Msg::Page(page) => {
-        match page {
-          PageMsg::Next => {
-            self.query.page = Some(self.query.page.unwrap_or(0) + 1);
-          }
-          PageMsg::Prev => {
-            self.query.page = Some(self.query.page.unwrap_or(0) - 1);
-          }
-          PageMsg::To(page) => {
-            self.query.page = Some(page - 1);
-          }
-        }
-        ctx
-          .link()
-          .navigator()
-          .unwrap()
-          .push_with_query(&Route::Exp, &self.query)
-          .unwrap();
-        ctx.link().send_message(Msg::Send);
-      }
-      Msg::Query(query) => {
-        match query {
-          QueryMsg::Source(part) => {
-            self.query.source = Some(part);
-          }
-          QueryMsg::Query(query) => {
-            self.query = query;
-          }
-        }
-        ctx
-          .link()
-          .navigator()
-          .unwrap()
-          .push_with_query(&Route::Exp, &self.query)
-          .unwrap();
-        ctx.link().send_message(Msg::Send);
-      }
-    }
-    false
-  }
-  fn view(&self, ctx: &Context<Self>) -> Html {
-    html! {
-      <div class="card">
-        {self.query(ctx)}
-        <div class="table-responsive">
-          <table class="table card-table table-vcenter table-striped table-sm table-hover">
-            <thead>
-              <tr>
-                <th scope="col">{"Name"}</th>
-                <th scope="col">{"Source"}</th>
-                <th scope="col">{"Verified"}</th>
-                <th scope="col">{"Path"}</th>
-                <th scope="col">{"Meta"}</th>
-                <th scope="col">{"Updated"}</th>
-              </tr>
-            </thead>
-            <tbody>
-            {
-              self.result.iter().map(|item| {
-              let p = ExpProps{props:item.clone()};
-              html!{<>{html!( <EXPRow ..p/>) }</>}
-                }).collect::<Html>()
-              }
-            </tbody>
-          </table>
-        </div>
-      {self.pagination(ctx)}
-      </div>
-    }
-  }
-  fn rendered(&mut self, ctx: &Context<Self>, first_render: bool) {
-    if first_render {
-      ctx.link().send_message(Msg::Send);
-    }
-  }
-}
-
-impl ExploitInfoList {
-  fn pagination(&self, ctx: &Context<Self>) -> Html {
-    let paging = self.paging.clone();
-    let next_page = ctx.link().callback(|_| Msg::Page(PageMsg::Next));
-    let prev_page = ctx.link().callback(|_| Msg::Page(PageMsg::Prev));
-    let to_page = ctx.link().callback(|event: MouseEvent| {
-      let target: EventTarget = event.target().unwrap();
-      let page: i64 = i64::from_str(&target.clone().unchecked_into::<HtmlButtonElement>().value())
-        .unwrap_or_default();
-      Msg::Page(PageMsg::To(page))
-    });
-    let p = PaginationProps {
-      paging,
-      next_page,
-      prev_page,
-      to_page,
-    };
-    html! {<Pagination ..p.clone()/>}
-  }
-  fn query(&self, ctx: &Context<Self>) -> Html {
-    let query_source = ctx.link().callback(|e: MouseEvent| {
-      let target: EventTarget = e.target().unwrap();
-      let severity: String = target.clone().unchecked_into::<HtmlButtonElement>().value();
-      Msg::Query(QueryMsg::Source(severity))
-    });
-    let query = ctx
-      .link()
-      .callback(|args: QueryExploit| Msg::Query(QueryMsg::Query(args)));
-    let p = EXPQueryProps {
-      props: self.query.clone(),
-      is_verified: None,
-      query_source,
-      query,
-    };
-    html! {
-      <EXPQuery ..p.clone()/>
-    }
-  }
-}
diff --git a/nvd-yew/src/routes/kb.rs b/nvd-yew/src/routes/kb.rs
index 0a398cf..dcb571d 100644
--- a/nvd-yew/src/routes/kb.rs
+++ b/nvd-yew/src/routes/kb.rs
@@ -7,12 +7,12 @@ use yew_router::prelude::*;
 
 use nvd_model::knowledge_base::{KnowledgeBase, QueryKnowledgeBase};
 
-use crate::component::{KBQuery, KBQueryProps, KBRow, KbProps, Pagination, PaginationProps};
+use crate::component::{KbProps, KBQuery, KBQueryProps, KBRow, Pagination, PaginationProps};
 use crate::console_log;
 use crate::modules::ListResponse;
 use crate::routes::Route;
-use crate::services::kb::knowledge_base_list;
 use crate::services::FetchState;
+use crate::services::kb::knowledge_base_list;
 
 pub type KnowledgeBaseInfoList = ListResponse<KnowledgeBase, QueryKnowledgeBase>;
 
@@ -104,7 +104,7 @@ impl Component for KnowledgeBaseInfoList {
           .link()
           .navigator()
           .unwrap()
-          .push_with_query(&Route::Exp, &self.query)
+          .push_with_query(&Route::Kb, &self.query)
           .unwrap();
         ctx.link().send_message(Msg::Send);
       }
@@ -121,7 +121,8 @@ impl Component for KnowledgeBaseInfoList {
               <tr>
                 <th scope="col">{"Name"}</th>
                 <th scope="col">{"Source"}</th>
-                <th scope="col">{"Links"}</th>
+                <th scope="col">{"Verified"}</th>
+                <th scope="col">{"Path"}</th>
                 <th scope="col">{"Meta"}</th>
                 <th scope="col">{"Updated"}</th>
               </tr>
diff --git a/nvd-yew/src/routes/mod.rs b/nvd-yew/src/routes/mod.rs
index 3d84964..7fc5cd0 100644
--- a/nvd-yew/src/routes/mod.rs
+++ b/nvd-yew/src/routes/mod.rs
@@ -4,18 +4,14 @@ use yew_router::prelude::*;
 use cpe::VendorProducts;
 use cve::CVEDetails;
 use cve_list::CveInfoList;
-use exp::ExploitInfoList;
 use home::Home;
+use kb::KnowledgeBaseInfoList;
 use page_not_found::PageNotFound;
 
-// use nvd_cvss::Cvss;
-use crate::routes::kb::KnowledgeBaseInfoList;
-
 mod cve;
 mod cve_list;
 // mod cvss;
 mod cpe;
-mod exp;
 mod home;
 mod kb;
 mod page_not_found;
@@ -28,8 +24,6 @@ pub enum Route {
   CveList,
   #[at("/cpe/")]
   Cpe,
-  #[at("/exp/")]
-  Exp,
   #[at("/kb/")]
   Kb,
   #[at("/")]
@@ -54,9 +48,6 @@ impl Route {
       Route::Cpe => {
         html! {<VendorProducts/>}
       }
-      Route::Exp => {
-        html! { <ExploitInfoList /> }
-      }
       Route::Kb => {
         html! { <KnowledgeBaseInfoList /> }
       }
diff --git a/nvd-yew/src/services/exp.rs b/nvd-yew/src/services/exp.rs
deleted file mode 100644
index 5df481b..0000000
--- a/nvd-yew/src/services/exp.rs
+++ /dev/null
@@ -1,10 +0,0 @@
-use super::request_get;
-use crate::error::Error;
-use crate::modules::ListResponse;
-use nvd_model::exploit::{Exploit, QueryExploit};
-
-pub async fn exploit_list(
-  query: QueryExploit,
-) -> Result<ListResponse<Exploit, QueryExploit>, Error> {
-  request_get::<QueryExploit, ListResponse<Exploit, QueryExploit>>("exp/".to_string(), query).await
-}
diff --git a/nvd-yew/src/services/mod.rs b/nvd-yew/src/services/mod.rs
index 29967e4..678e5d6 100644
--- a/nvd-yew/src/services/mod.rs
+++ b/nvd-yew/src/services/mod.rs
@@ -4,7 +4,6 @@ use crate::error::Error;
 
 pub mod cpe;
 pub mod cve;
-pub mod exp;
 pub mod kb;
 mod request;