Количество 2
Количество 2
CVE-2020-26226
In the npm package semantic-release before version 17.2.3, secrets that would normally be masked by `semantic-release` can be accidentally disclosed if they contain characters that become encoded when included in a URL. Secrets that do not contain characters that become encoded when included in a URL are already masked properly. The issue is fixed in version 17.2.3.
GHSA-r2j6-p67h-q639
Secret disclosure when containing characters that become URI encoded
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-26226 In the npm package semantic-release before version 17.2.3, secrets that would normally be masked by `semantic-release` can be accidentally disclosed if they contain characters that become encoded when included in a URL. Secrets that do not contain characters that become encoded when included in a URL are already masked properly. The issue is fixed in version 17.2.3. | CVSS3: 8.1 | 0% Низкий | около 5 лет назад |
| GHSA-r2j6-p67h-q639 Secret disclosure when containing characters that become URI encoded | CVSS3: 8.1 | 0% Низкий | около 5 лет назад |
Уязвимостей на страницу