Description
nodemssql was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/484
Related Vulnerabilities
CVE-2013-4590 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2017-11342 Vulnerability in npm package node-sass
CVE-2016-9606 Vulnerability in maven package org.jboss.resteasy:resteasy-yaml-provider
CVE-2018-20676 Vulnerability in maven package org.webjars.bowergithub.jasny:bootstrap
CVE-2023-24620 Vulnerability in maven package com.esotericsoftware.yamlbeans:yamlbeans