Description
`sqlserver` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/486
Related Vulnerabilities
CVE-2016-5005 Vulnerability in maven package org.apache.archiva:archiva
CVE-2021-3666 Vulnerability in npm package body-parser-xml
CVE-2018-11698 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2018-15890 Vulnerability in maven package org.ethereum:ethereumj-core
CVE-2021-23497 Vulnerability in npm package @strikeentco/set