npm Package Vulnerabilities
All 2,643 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,245 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 551.pug2 CVEs
- 552.pug-code-gen2 CVEs
- 553.putil-merge2 CVEs
- 554.querymen2 CVEs
- 555.quill2 CVEs
- 556.react-dev-utils2 CVEs
- 557.react-draft-wysiwyg2 CVEs
- 558.realms-shim2 CVEs
- 559.@remix-run/react2 CVEs
- 560.remotion2 CVEs
- 561.replicator2 CVEs
- 562.request2 CVEs
- 563.reveal.js2 CVEs
- 564.rollbar2 CVEs
- 565.rollup2 CVEs
- 566.rollup-plugin-server2 CVEs
- 567.rwsdk2 CVEs
- 568.schema-inspector2 CVEs
- 569.scratch-svg-renderer2 CVEs
- 570.sds2 CVEs
- 571.semantic-release2 CVEs
- 572.semver2 CVEs
- 573.semver-regex2 CVEs
- 574.@sentry/astro2 CVEs
- 575.@sentry/nextjs2 CVEs
- 576.serialize-to-js2 CVEs
- 577.serve-lite2 CVEs
- 578.serve-static2 CVEs
- 579.ses2 CVEs
- 580.set-value2 CVEs
- 581.shiba2 CVEs
- 582.simditor2 CVEs
- 583.snyk-gradle-plugin2 CVEs
- 584.socket.io-file2 CVEs
- 585.sockjs2 CVEs
- 586.@solana/web3.js2 CVEs
- 587.sqlite32 CVEs
- 588.squirrelly2 CVEs
- 589.ssrfcheck2 CVEs
- 590.ssri2 CVEs
- 591.st2 CVEs
- 592.statics-server2 CVEs
- 593.status-board2 CVEs
- 594.storybook2 CVEs
- 595.@strapi/database2 CVEs
- 596.@strikeentco/set2 CVEs
- 597.summernote2 CVEs
- 598.@sveltejs/adapter-node2 CVEs
- 599.@sync-in/server2 CVEs
- 600.@theia/ai-ide2 CVEs
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →