Description
`node-sqlite` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/493
Related Vulnerabilities
CVE-2020-1935 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2016-10744 Vulnerability in maven package org.webjars.bower:select2
CVE-2021-30638 Vulnerability in maven package org.apache.tapestry:tapestry-core
CVE-2020-6836 Vulnerability in maven package org.webjars.npm:hot-formula-parser