Description

A vulnerability was found in email-existence. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The name of the patch is 0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56. It is recommended to apply a patch to fix this issue. VDB-216854 is the identifier assigned to this vulnerability.

Remediation

References

https://github.com/nmanousos/email-existence/commit/0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56

https://github.com/nmanousos/email-existence/pull/37

https://vuldb.com/?ctiid.216854

https://vuldb.com/?id.216854

Related Vulnerabilities

CVE-2017-16008 Vulnerability in maven package org.webjars:i18next

CVE-2021-21409 Vulnerability in maven package io.netty:netty-codec-http2

CVE-2023-34478 Vulnerability in maven package org.apache.shiro:shiro-web

CVE-2018-20676 Vulnerability in maven package org.webjars.bowergithub.jasny:bootstrap

CVE-2022-23505 Vulnerability in npm package passport-wsfed-saml2

Severity

High

Classification

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Patch Third Party Advisory Permissions Required NVD-CWE-noinfo