Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:npm/node-sqlite@1.0.2
purl pkg:npm/node-sqlite@1.0.2
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-7ukm-82ah-qybd
Aliases:
GMS-2017-172
Hijacked Environment Variables `node-sqlite` was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. There are no reported fixed by versions.
VCID-r7af-r79e-6qh4
Aliases:
CVE-2017-16048
GHSA-x52f-h74p-9jh8
Malicious package (Typosquatting) node-sqlite is a malicious module published with the intent to hijack environment variables. It has been unpublished by npm. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-05-31T09:45:35.170226+00:00 GitLab Importer Affected by VCID-r7af-r79e-6qh4 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/node-sqlite/CVE-2017-16048.yml 38.6.0
2026-05-31T09:39:12.442996+00:00 GitLab Importer Affected by VCID-7ukm-82ah-qybd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/node-sqlite/GMS-2017-172.yml 38.6.0
2026-05-31T00:50:19.366487+00:00 GHSA Importer Affected by VCID-r7af-r79e-6qh4 https://github.com/advisories/GHSA-x52f-h74p-9jh8 38.6.0