npm Package Vulnerabilities

All 2,643 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,243 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 451.html-janitor2 CVEs
  2. 452.html-pages2 CVEs
  3. 453.http-file-server2 CVEs
  4. 454.http-live-simulator2 CVEs
  5. 455.@hulumi/baseline2 CVEs
  6. 456.i18next2 CVEs
  7. 457.ip2 CVEs
  8. 458.is-my-json-valid2 CVEs
  9. 459.isolated-vm2 CVEs
  10. 460.is-svg2 CVEs
  11. 461.jellyfin-web2 CVEs
  12. 462.jose-browser-runtime2 CVEs
  13. 463.jpeg-js2 CVEs
  14. 464.jpv2 CVEs
  15. 465.jquery-file-upload2 CVEs
  16. 466.js-data2 CVEs
  17. 467.jsoneditor2 CVEs
  18. 468.jsonpath2 CVEs
  19. 469.jsonpath-plus2 CVEs
  20. 470.json-ptr2 CVEs
  21. 471.jsreport2 CVEs
  22. 472.jsuites2 CVEs
  23. 473.jsx-slack2 CVEs
  24. 474.jszip2 CVEs
  25. 475.karma2 CVEs
  26. 476.keyget2 CVEs
  27. 477.@keystone-6/auth2 CVEs
  28. 478.kindeditor2 CVEs
  29. 479.@kindspells/astro-shield2 CVEs
  30. 480.knex2 CVEs
  31. 481.kysely2 CVEs
  32. 482.langchain2 CVEs
  33. 483.launch-editor2 CVEs
  34. 484.libnested2 CVEs
  35. 485.libxmljs22 CVEs
  36. 486.link-preview-js2 CVEs
  37. 487.localhost-now2 CVEs
  38. 488.lodash.template2 CVEs
  39. 489.lodash.unset2 CVEs
  40. 490.madlib-object-utils2 CVEs
  41. 491.mapbox.js2 CVEs
  42. 492.markdown-pdf2 CVEs
  43. 493.mathjax2 CVEs
  44. 494.matrix-appservice-bridge2 CVEs
  45. 495.mcstatic2 CVEs
  46. 496.md-to-pdf2 CVEs
  47. 497.mercurius2 CVEs
  48. 498.merge2 CVEs
  49. 499.merge-deep2 CVEs
  50. 500.@mikro-orm/core2 CVEs

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →