Description
noderequest was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/512
Related Vulnerabilities
CVE-2019-19771 Vulnerability in npm package bitcoisnj-lib
CVE-2021-22135 Vulnerability in maven package org.elasticsearch:elasticsearch
CVE-2020-1748 Vulnerability in maven package org.wildfly.security:wildfly-elytron
CVE-2019-10319 Vulnerability in maven package org.jenkins-ci.plugins:pam-auth
CVE-2019-10157 Vulnerability in npm package keycloak-connect