segmentio/is-email

Releases2

Frequency2 years 9 months

Last Release about 10 years ago

Stars49

Component: loosely validate an email address.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-36716 ↗	Jul 14, 2021Wednesday, 14 July 2021, 16:15	7.5 HIGH	5 MEDIUM
A ReDoS (regular expression denial of service) flaw was found in the Segment is-email package before 1.0.1 for Node.js. An attacker that is able to provide crafted input to the isEmail(input) function may cause an application to consume an excessive amount of CPU.