[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2020-15095":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":25,"duplicate_of":9,"upstream":27,"downstream":28,"duplicates":63,"related":64,"reserved_at":9,"published_at":93,"modified_at":94,"state":95,"summary":96,"references_raw":105,"kevs":160,"epss":161,"epss_history":164,"metrics":431,"affected":446},"CVE-2020-15095","Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like \"\u003Cprotocol>://[\u003Cuser>[:\u003Cpassword>]@]\u003Chostname>[:\u003Cport>][:][/]\u003Cpath>\". The password value is not redacted and is printed to stdout and also to any generated log files.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-532","Insertion of Sensitive Information into Log File","The product writes sensitive information to a log file.","weakness","Incomplete","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-215","Fuzzing for application mapping",[],[],[26],"GHSA-93f3-23rq-pjfp",[],[29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61],{"_key":30},"SUSE-SU-2020:2829-1",{"_key":32},"UBUNTU-CVE-2020-15095",{"_key":34},"SUSE-SU-2020:2800-1",{"_key":36},"SUSE-SU-2020:2812-1",{"_key":38},"SUSE-SU-2020:2813-1",{"_key":40},"SUSE-SU-2020:2823-1",{"_key":42},"SUSE-SU-2020:2870-1",{"_key":44},"OPENSUSE-SU-2020:1616-1",{"_key":46},"OPENSUSE-SU-2020:1644-1",{"_key":48},"OPENSUSE-SU-2020:1660-1",{"_key":50},"OPENSUSE-SU-2024:11096-1",{"_key":52},"DEBIAN-CVE-2020-15095",{"_key":54},"RHSA-2020:4272",{"_key":56},"RHSA-2020:4903",{"_key":58},"RHSA-2020:5086",{"_key":60},"RHSA-2021:0521",{"_key":62},"RHSA-2021:0548",[],[65,66,67,68,69,70,71,72,73,74,75,77,79,81,83,85,87,89,91],{"_key":30},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":76},"CGA-23R5-3J95-FRX5",{"_key":78},"CGA-5V4M-H7WV-6856",{"_key":80},"CGA-69VM-C6V8-VCFG",{"_key":82},"CGA-C77R-87RG-CPCM",{"_key":84},"CGA-C9MP-GJVW-6FJ5",{"_key":86},"CGA-FP3P-XFMG-25W8",{"_key":88},"CGA-P9WR-Q6WQ-R874",{"_key":90},"CGA-V346-HW2H-F389",{"_key":92},"CGA-CQ5C-C68W-493Q","2020-07-07T18:55:12.000Z","2024-08-04T13:08:21.646Z","Modified",{"cisa_kev":97,"cisa_ransomware":97,"cisa_vendor":9,"epss_severity":98,"epss_score":99,"severity":100,"severity_score":101,"severity_version":102,"severity_source":103,"severity_vector":104,"severity_status":95},false,"low",0.0013,"medium",4.4,"v3.1","cve.org","CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N",[106,115,121,126,133,137,141,146,151,156],{"url":107,"sources":108,"tags":111},"https://github.com/npm/cli/security/advisories/GHSA-93f3-23rq-pjfp",[103,109,110],"nvd","osv_npm",[112,113,114],"X Refsource CONFIRM","Third Party Advisory","WEB",{"url":116,"sources":117,"tags":118},"https://github.com/npm/cli/commit/a9857b8f6869451ff058789c4631fadfde5bbcbc",[103,109,110],[119,120,113,114],"X Refsource MISC","Patch",{"url":122,"sources":123,"tags":124},"https://github.com/npm/cli/blob/66aab417f836a901f8afb265251f761bb0422463/CHANGELOG.md#6146-2020-07-07",[103,109,110],[119,125,113,114],"Release Notes",{"url":127,"sources":128,"tags":129},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00011.html",[103,109,110],[130,131,132,113,114],"Vendor Advisory","X Refsource SUSE","Mailing List",{"url":134,"sources":135,"tags":136},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00015.html",[103,109,110],[130,131,132,113,114],{"url":138,"sources":139,"tags":140},"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00023.html",[103,109,110],[130,131,132,113,114],{"url":142,"sources":143,"tags":144},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4OOYAMJVLLCLXDTHW3V5UXNULZBBK4O6/",[103,109],[130,145],"X Refsource FEDORA",{"url":147,"sources":148,"tags":149},"https://security.gentoo.org/glsa/202101-07",[103,109,110],[130,150,113,114],"X Refsource GENTOO",{"url":152,"sources":153,"tags":154},"https://nvd.nist.gov/vuln/detail/CVE-2020-15095",[110],[155],"Advisory",{"url":157,"sources":158,"tags":159},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4OOYAMJVLLCLXDTHW3V5UXNULZBBK4O6",[110],[114],[],{"date":162,"score":99,"percentile":163},"2026-06-04",0.32033,[165,169,172,175,178,181,184,187,190,193,196,199,202,205,208,212,215,218,221,224,227,230,233,236,239,242,245,248,251,254,257,259,261,263,265,267,270,273,276,279,282,285,288,291,294,298,301,304,307,310,313,316,319,322,324,327,330,333,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,380,383,386,388,391,394,397,400,403,407,410,413,416,419,422,425,428],{"date":166,"score":167,"percentile":168},"2025-11-04",0.00044,0.13166,{"date":170,"score":167,"percentile":171},"2025-11-05",0.13196,{"date":173,"score":167,"percentile":174},"2025-11-06",0.13285,{"date":176,"score":167,"percentile":177},"2025-11-07",0.13299,{"date":179,"score":167,"percentile":180},"2025-11-08",0.13302,{"date":182,"score":167,"percentile":183},"2025-11-09",0.13274,{"date":185,"score":167,"percentile":186},"2025-11-10",0.1324,{"date":188,"score":167,"percentile":189},"2025-11-11",0.13256,{"date":191,"score":167,"percentile":192},"2025-11-12",0.13229,{"date":194,"score":167,"percentile":195},"2025-11-13",0.13255,{"date":197,"score":167,"percentile":198},"2025-11-14",0.13277,{"date":200,"score":167,"percentile":201},"2025-11-15",0.13264,{"date":203,"score":167,"percentile":204},"2025-11-16",0.13258,{"date":206,"score":167,"percentile":207},"2025-11-17",0.13236,{"date":209,"score":210,"percentile":211},"2025-11-18",0.00097,0.23022,{"date":213,"score":210,"percentile":214},"2025-11-19",0.23032,{"date":216,"score":210,"percentile":217},"2025-11-20",0.23035,{"date":219,"score":167,"percentile":220},"2025-11-21",0.13266,{"date":222,"score":167,"percentile":223},"2025-11-22",0.13267,{"date":225,"score":167,"percentile":226},"2025-11-23",0.13245,{"date":228,"score":167,"percentile":229},"2025-11-24",0.13207,{"date":231,"score":167,"percentile":232},"2025-11-25",0.13206,{"date":234,"score":167,"percentile":235},"2025-11-26",0.13197,{"date":237,"score":167,"percentile":238},"2025-11-27",0.13198,{"date":240,"score":167,"percentile":241},"2025-11-28",0.13175,{"date":243,"score":167,"percentile":244},"2025-11-29",0.13143,{"date":246,"score":167,"percentile":247},"2025-11-30",0.13151,{"date":249,"score":167,"percentile":250},"2025-12-01",0.13186,{"date":252,"score":167,"percentile":253},"2025-12-02",0.13203,{"date":255,"score":167,"percentile":256},"2025-12-03",0.13223,{"date":258,"score":167,"percentile":235},"2025-12-04",{"date":260,"score":167,"percentile":220},"2025-12-05",{"date":262,"score":167,"percentile":183},"2025-12-06",{"date":264,"score":167,"percentile":204},"2025-12-07",{"date":266,"score":167,"percentile":220},"2025-12-08",{"date":268,"score":167,"percentile":269},"2025-12-09",0.13331,{"date":271,"score":167,"percentile":272},"2025-12-10",0.13403,{"date":274,"score":167,"percentile":275},"2025-12-11",0.13438,{"date":277,"score":167,"percentile":278},"2025-12-12",0.13487,{"date":280,"score":167,"percentile":281},"2025-12-13",0.13511,{"date":283,"score":167,"percentile":284},"2025-12-14",0.13491,{"date":286,"score":167,"percentile":287},"2025-12-15",0.13457,{"date":289,"score":167,"percentile":290},"2025-12-16",0.13464,{"date":292,"score":167,"percentile":293},"2025-12-17",0.13564,{"date":295,"score":296,"percentile":297},"2025-12-18",0.00048,0.15082,{"date":299,"score":296,"percentile":300},"2025-12-19",0.15126,{"date":302,"score":296,"percentile":303},"2025-12-20",0.15101,{"date":305,"score":296,"percentile":306},"2025-12-21",0.15064,{"date":308,"score":296,"percentile":309},"2025-12-22",0.15018,{"date":311,"score":296,"percentile":312},"2025-12-23",0.1502,{"date":314,"score":296,"percentile":315},"2025-12-24",0.15031,{"date":317,"score":296,"percentile":318},"2025-12-25",0.15105,{"date":320,"score":167,"percentile":321},"2025-12-26",0.13608,{"date":323,"score":167,"percentile":321},"2025-12-27",{"date":325,"score":167,"percentile":326},"2025-12-28",0.13583,{"date":328,"score":167,"percentile":329},"2025-12-29",0.1348,{"date":331,"score":167,"percentile":332},"2025-12-30",0.13488,{"date":334,"score":167,"percentile":335},"2025-12-31",0.1355,{"date":337,"score":167,"percentile":338},"2026-01-01",0.13622,{"date":340,"score":167,"percentile":341},"2026-01-02",0.1361,{"date":343,"score":167,"percentile":344},"2026-01-03",0.13576,{"date":346,"score":167,"percentile":347},"2026-01-04",0.13497,{"date":349,"score":167,"percentile":350},"2026-01-05",0.13454,{"date":352,"score":167,"percentile":353},"2026-01-06",0.13465,{"date":355,"score":167,"percentile":356},"2026-01-07",0.13499,{"date":358,"score":167,"percentile":359},"2026-01-08",0.13548,{"date":361,"score":167,"percentile":362},"2026-01-09",0.13556,{"date":364,"score":167,"percentile":365},"2026-01-10",0.13572,{"date":367,"score":167,"percentile":368},"2026-01-11",0.13501,{"date":370,"score":167,"percentile":371},"2026-01-12",0.13469,{"date":373,"score":167,"percentile":374},"2026-01-13",0.13443,{"date":376,"score":167,"percentile":377},"2026-01-14",0.13503,{"date":379,"score":167,"percentile":377},"2026-01-15",{"date":381,"score":167,"percentile":382},"2026-01-16",0.13549,{"date":384,"score":167,"percentile":385},"2026-01-17",0.13566,{"date":387,"score":167,"percentile":332},"2026-01-18",{"date":389,"score":167,"percentile":390},"2026-01-19",0.13427,{"date":392,"score":167,"percentile":393},"2026-01-20",0.13406,{"date":395,"score":167,"percentile":396},"2026-01-21",0.13392,{"date":398,"score":167,"percentile":399},"2026-01-22",0.13352,{"date":401,"score":167,"percentile":402},"2026-01-23",0.13433,{"date":404,"score":405,"percentile":406},"2026-01-24",0.001,0.28371,{"date":408,"score":405,"percentile":409},"2026-01-25",0.28293,{"date":411,"score":405,"percentile":412},"2026-01-26",0.28207,{"date":414,"score":405,"percentile":415},"2026-01-27",0.28184,{"date":417,"score":405,"percentile":418},"2026-01-28",0.28169,{"date":420,"score":405,"percentile":421},"2026-01-29",0.28124,{"date":423,"score":405,"percentile":424},"2026-01-30",0.28116,{"date":426,"score":405,"percentile":427},"2026-01-31",0.2812,{"date":429,"score":405,"percentile":430},"2026-02-01",0.28183,[432,437,444],{"source":103,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":433,"cvss_v4_0":9},{"baseScore":101,"baseSeverity":434,"vectorString":104,"impactScore":435,"exploitabilityScore":436},"MEDIUM",6,2.1,{"source":109,"cvss_v2_0":438,"cvss_v3_0":9,"cvss_v3_1":443,"cvss_v4_0":9},{"baseScore":439,"baseSeverity":9,"vectorString":440,"impactScore":441,"exploitabilityScore":442},1.9,"AV:L/AC:M/Au:N/C:P/I:N/A:N",2.9,3.4,{"baseScore":101,"baseSeverity":434,"vectorString":104,"impactScore":435,"exploitabilityScore":436},{"source":110,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":445,"cvss_v4_0":9},{"baseScore":101,"baseSeverity":9,"vectorString":104,"impactScore":435,"exploitabilityScore":436},[447,455,465,471,476],{"ecosystem":9,"name":448,"vendor":449,"product":448,"cpe_part":450,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":451},"fedora","fedoraproject","o",[452],{"version":453,"is_range":97,"range_type":454,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"33","cpe",{"ecosystem":9,"name":456,"vendor":457,"product":456,"cpe_part":458,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":459},"cli","npm","a",[460],{"version":461,"is_range":462,"range_type":103,"version_start":9,"version_start_type":9,"version_end":463,"version_end_type":464,"fixed_in":9},"\u003C 6.14.6",true,"6.14.6","excluding",{"ecosystem":466,"name":457,"vendor":466,"product":457,"cpe_part":9,"purl_type":457,"purl_namespace":9,"purl_name":457,"source":9,"versions":467},"Npm",[468],{"version":469,"is_range":462,"range_type":470,"version_start":9,"version_start_type":9,"version_end":463,"version_end_type":464,"fixed_in":9},"lt6_14_6","semver",{"ecosystem":9,"name":457,"vendor":472,"product":457,"cpe_part":458,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":473},"npmjs",[474],{"version":475,"is_range":462,"range_type":454,"version_start":9,"version_start_type":9,"version_end":463,"version_end_type":464,"fixed_in":9},"lt6.14.6",{"ecosystem":9,"name":477,"vendor":478,"product":477,"cpe_part":450,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":479},"leap","opensuse",[480,482],{"version":481,"is_range":97,"range_type":454,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.1",{"version":483,"is_range":97,"range_type":454,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"15.2"]