Description
nodemssql was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/484
Related Vulnerabilities
CVE-2023-35167 Vulnerability in npm package remult
CVE-2022-36919 Vulnerability in maven package org.jenkins-ci.plugins:coverity
CVE-2014-3623 Vulnerability in maven package org.apache.cxf:cxf
CVE-2021-32662 Vulnerability in npm package techdocs-common
CVE-2022-40149 Vulnerability in maven package org.codehaus.jettison:jettison