Description
discordi.js is a malicious module based on the discord.js library that exfiltrates login tokens to pastebin.
Remediation
References
https://nodesecurity.io/advisories/545
Related Vulnerabilities
CVE-2016-10735 Vulnerability in maven package org.webjars.bowergithub.angular-ui:bootstrap
CVE-2017-16030 Vulnerability in npm package useragent
CVE-2018-20676 Vulnerability in maven package org.webjars.bower:bootstrap-sass
CVE-2019-5444 Vulnerability in npm package serve-here.js
CVE-2018-1230 Vulnerability in maven package org.springframework.batch:spring-batch-admin