Description
A vulnerability was found in email-existence. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The name of the patch is 0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56. It is recommended to apply a patch to fix this issue. VDB-216854 is the identifier assigned to this vulnerability.
References (4)
Core 4
Core References
Permissions Required, Third Party Advisory vdb-entry
https://vuldb.com/?id.216854
Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.216854
Patch, Third Party Advisory issue-tracking
https://github.com/nmanousos/email-existence/pull/37
Patch, Third Party Advisory patch
https://github.com/nmanousos/email-existence/commit/0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56
Scores
CVSS v3
3.0
EPSS
0.0044
EPSS Percentile
63.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-1333
Status
published
Products (2)
email-existence_project/email-existence
npm/email-existence
0npm
Published
Dec 27, 2022
Tracked Since
Feb 18, 2026