Description
`sqliter` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/490
Related Vulnerabilities
CVE-2022-38545 Vulnerability in npm package valine
CVE-2021-23363 Vulnerability in npm package kill-by-port
CVE-2018-11695 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2022-24847 Vulnerability in maven package org.geoserver:gs-main
CVE-2023-26120 Vulnerability in maven package com.xuxueli:xxl-job