Description
nodemssql was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/484
Related Vulnerabilities
CVE-2020-7629 Vulnerability in npm package install-package
CVE-2009-0783 Vulnerability in maven package org.apache.tomcat:catalina
CVE-2012-5784 Vulnerability in maven package org.apache.axis:axis
CVE-2014-9634 Vulnerability in maven package org.jenkins-ci.main:jenkins-core
CVE-2018-11698 Vulnerability in maven package org.webjars.npm:node-sass