Description
mongose was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
Remediation
References
https://nodesecurity.io/advisories/516
Related Vulnerabilities
CVE-2022-28156 Vulnerability in maven package com.surenpi.jenkins:phoenix-autotest
CVE-2021-46364 Vulnerability in maven package info.magnolia:magnolia-core
CVE-2023-29521 Vulnerability in maven package org.xwiki.platform:xwiki-platform-vfs-ui
CVE-2021-44878 Vulnerability in maven package org.pac4j:pac4j-core
CVE-2021-21640 Vulnerability in maven package org.jenkins-ci.main:jenkins-core