npm Package Vulnerabilities
All 2,643 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,243 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 451.html-janitor2 CVEs
- 452.html-pages2 CVEs
- 453.http-file-server2 CVEs
- 454.http-live-simulator2 CVEs
- 455.@hulumi/baseline2 CVEs
- 456.i18next2 CVEs
- 457.ip2 CVEs
- 458.is-my-json-valid2 CVEs
- 459.isolated-vm2 CVEs
- 460.is-svg2 CVEs
- 461.jellyfin-web2 CVEs
- 462.jose-browser-runtime2 CVEs
- 463.jpeg-js2 CVEs
- 464.jpv2 CVEs
- 465.jquery-file-upload2 CVEs
- 466.js-data2 CVEs
- 467.jsoneditor2 CVEs
- 468.jsonpath2 CVEs
- 469.jsonpath-plus2 CVEs
- 470.json-ptr2 CVEs
- 471.jsreport2 CVEs
- 472.jsuites2 CVEs
- 473.jsx-slack2 CVEs
- 474.jszip2 CVEs
- 475.karma2 CVEs
- 476.keyget2 CVEs
- 477.@keystone-6/auth2 CVEs
- 478.kindeditor2 CVEs
- 479.@kindspells/astro-shield2 CVEs
- 480.knex2 CVEs
- 481.kysely2 CVEs
- 482.langchain2 CVEs
- 483.launch-editor2 CVEs
- 484.libnested2 CVEs
- 485.libxmljs22 CVEs
- 486.link-preview-js2 CVEs
- 487.localhost-now2 CVEs
- 488.lodash.template2 CVEs
- 489.lodash.unset2 CVEs
- 490.madlib-object-utils2 CVEs
- 491.mapbox.js2 CVEs
- 492.markdown-pdf2 CVEs
- 493.mathjax2 CVEs
- 494.matrix-appservice-bridge2 CVEs
- 495.mcstatic2 CVEs
- 496.md-to-pdf2 CVEs
- 497.mercurius2 CVEs
- 498.merge2 CVEs
- 499.merge-deep2 CVEs
- 500.@mikro-orm/core2 CVEs
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →