This affects the package npm-user-validate before 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2020-10-27T15:05:18.052022Z
Updated: 2024-09-17T04:28:53.351Z
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7754
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-10-27T15:15:13.123
Modified: 2020-10-27T17:31:05.710
Link: CVE-2020-7754
Redhat