Description
This affects all versions of package npm-help. The injection point is located in line 13 in index.js file in export.latestVersion() function.
Remediation
References
https://security.netapp.com/advisory/ntap-20220901-0012/
https://security.snyk.io/vuln/SNYK-JS-NPMHELP-1050983
Related Vulnerabilities
CVE-2022-46175 Vulnerability in npm package json5
CVE-2019-10416 Vulnerability in maven package org.jenkins-ci.plugins:violation-comments-to-gitlab
CVE-2023-26119 Vulnerability in maven package net.sourceforge.htmlunit:htmlunit
CVE-2016-10744 Vulnerability in maven package org.webjars.bower:select2
CVE-2019-13237 Vulnerability in maven package org.opencms:opencms-core