8 matches found
EUVD-2018-0203
Malware in sbrugna...
GHSA-22J5-38QV-PXX7 sqliter is malware
The sqliter package is a piece of malware that steals environment variables and sends them to attacker controlled locations. All versions have been unpublished from the npm registry. Recommendation As this package is malware, if you find it installed in your environment, the real security concern...
Malicious JavaScript Package Detection
Detection and reporting of known malicious JavaScript packages or package versions. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...
Malicious Module
sqliter was a malicious module as it is developed to hijack environment variables...
CVE-2017-16051
sqliter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16051
sqliter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm...
CVE-2017-16051
CVE-2017-16051 corresponds to the npm malware incident around the sqliter package. The sqliter module was published with the intent to hijack environment variables and exfiltrate data, and all versions were subsequently unpublished from npm. Multiple connected sources confirm the package’s malici...
Hijacked Environment Variables
Overview The sqliter package is a piece of malware that steals environment variables and sends them to attacker controlled locations. All versions have been unpublished from the npm registry. Recommendation As this package is malware, if you find it installed in your environment, the real securit...