Description
babelcli was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/499
Related Vulnerabilities
CVE-2020-13445 Vulnerability in maven package com.liferay:com.liferay.portal.template.freemarker
CVE-2020-19698 Vulnerability in maven package org.webjars.bower:editor.md
CVE-2023-24188 Vulnerability in maven package com.bstek.ureport:ureport2-core
CVE-2022-24802 Vulnerability in npm package deepmerge-ts
CVE-2020-7677 Vulnerability in maven package org.webjars.npm:thenify