CVE-2018-25049: Inefficient Regular Expression Complexity

December 27, 2022 (updated January 7, 2023)

A vulnerability was found in email-existence. It has been rated as problematic. Affected by this issue is some unknown functionality of the file index.js. The manipulation leads to inefficient regular expression complexity. The name of the patch is 0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56. It is recommended to apply a patch to fix this issue. VDB-216854 is the identifier assigned to this vulnerability.

References

github.com/advisories/GHSA-p27h-4cpf-fw48
github.com/nmanousos/email-existence/commit/0029ba71b6ad0d8ec0baa2ecc6256d038bdd9b56
github.com/nmanousos/email-existence/pull/37
nvd.nist.gov/vuln/detail/CVE-2018-25049
vuldb.com/?ctiid.216854
vuldb.com/?id.216854

Code Behaviors & Features

Detect and mitigate CVE-2018-25049 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →