Description
`mariadb` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/495
Related Vulnerabilities
CVE-2019-10746 Vulnerability in npm package mixin-deep
CVE-2022-36079 Vulnerability in npm package parse-server
CVE-2020-19697 Vulnerability in maven package org.webjars.npm:editor.md
CVE-2020-2205 Vulnerability in maven package org.jenkins-ci.plugins:vncrecorder
CVE-2022-36883 Vulnerability in maven package org.jenkins-ci.plugins:git