Description
`fabric-js` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/487
Related Vulnerabilities
CVE-2017-9787 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2023-31719 Vulnerability in npm package @frangoteam/fuxa
CVE-2016-3092 Vulnerability in maven package commons-fileupload:commons-fileupload
CVE-2018-1000632 Vulnerability in maven package org.jenkins-ci.dom4j:dom4j
CVE-2023-49145 Vulnerability in maven package org.apache.nifi:nifi-jolt-transform-json-ui