npm Package Vulnerabilities

All 2,643 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,244 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 501.minimatch2 CVEs
  2. 502.minimist2 CVEs
  3. 503.misskey-js2 CVEs
  4. 504.mixin-deep2 CVEs
  5. 505.mjml2 CVEs
  6. 506.@modelcontextprotocol/inspector2 CVEs
  7. 507.@modelcontextprotocol/server-filesystem2 CVEs
  8. 508.mootools2 CVEs
  9. 509.mout2 CVEs
  10. 510.mpath2 CVEs
  11. 511.mppx2 CVEs
  12. 512.mqtt-packet2 CVEs
  13. 513.ms2 CVEs
  14. 514.m-server2 CVEs
  15. 515.msrcrypto2 CVEs
  16. 516.multi-ini2 CVEs
  17. 517.mversion2 CVEs
  18. 518.mysql2 CVEs
  19. 519.nanoid2 CVEs
  20. 520.@nestjs/core2 CVEs
  21. 521.netmask2 CVEs
  22. 522.@nguniversal/common2 CVEs
  23. 523.nitro2 CVEs
  24. 524.nitropack2 CVEs
  25. 525.@node-red/runtime2 CVEs
  26. 526.@node-saml/passport-saml2 CVEs
  27. 527.@npmcli/arborist2 CVEs
  28. 528.@nubosoftware/node-static2 CVEs
  29. 529.nunjucks2 CVEs
  30. 530.nuxt-api-party2 CVEs
  31. 531.@nuxt/devtools2 CVEs
  32. 532.@nuxtjs/mdc2 CVEs
  33. 533.@nuxt/nitro-server2 CVEs
  34. 534.@oakserver/oak2 CVEs
  35. 535.oauth2-server2 CVEs
  36. 536.@oneuptime/common2 CVEs
  37. 537.@openai/codex2 CVEs
  38. 538.@openc3/tool-common2 CVEs
  39. 539.opencc2 CVEs
  40. 540.opencode-ai2 CVEs
  41. 541.openlearnx2 CVEs
  42. 542.@orval/core2 CVEs
  43. 543.outray2 CVEs
  44. 544.@paperclipai/server2 CVEs
  45. 545.parse2 CVEs
  46. 546.pbkdf22 CVEs
  47. 547.pdfjs-dist2 CVEs
  48. 548.pdfmake2 CVEs
  49. 549.plotly.js2 CVEs
  50. 550.private-ip2 CVEs

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →