Description
`nodefabric` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/488
Related Vulnerabilities
CVE-2022-25931 Vulnerability in npm package easy-static-server
CVE-2022-25927 Vulnerability in maven package org.webjars.bowergithub.faisalman:ua-parser-js
CVE-2018-3715 Vulnerability in npm package glance
CVE-2023-0842 Vulnerability in maven package org.webjars.npm:xml2js
CVE-2020-28470 Vulnerability in npm package @scullyio/scully