Description
babelcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/499
Related Vulnerabilities
CVE-2013-4590 Vulnerability in maven package org.apache.tomcat:catalina
CVE-2022-31170 Vulnerability in maven package org.webjars.npm:openzeppelin__contracts-upgradeable
CVE-2021-44684 Vulnerability in npm package github-todos
CVE-2017-16150 Vulnerability in npm package wangguojing123
CVE-2020-6458 Vulnerability in maven package org.webjars.npm:electron