npm Package Vulnerabilities
All 2,647 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,285 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 951.confucious1 CVE
- 952.connection-tester1 CVE
- 953.connect-multiparty1 CVE
- 954.connect-pg-simple1 CVE
- 955.connie-lang1 CVE
- 956.console-io1 CVE
- 957.content1 CVE
- 958.content-security-policy-parser1 CVE
- 959.ContentTools1 CVE
- 960.controlled-merge1 CVE
- 961.@conventional-changelog/git-client1 CVE
- 962.convert-svg-to-jpeg1 CVE
- 963.convert-svg-to-png1 CVE
- 964.cookie1 CVE
- 965.cookie-encrypter1 CVE
- 966.cookiejar1 CVE
- 967.cookie-signature1 CVE
- 968.@cookiex/deep1 CVE
- 969.cool-path1 CVE
- 970.copilot-api1 CVE
- 971.copy-props1 CVE
- 972.cordova-android1 CVE
- 973.cordova-plugin-fingerprint-aio1 CVE
- 974.cordova-plugin-ionic-webview1 CVE
- 975.corenlp-js-interface1 CVE
- 976.corenlp-js-prefab1 CVE
- 977.cors-anywhere1 CVE
- 978.counterpart1 CVE
- 979.coursevault-preview1 CVE
- 980.create-choo-app31 CVE
- 981.create-choo-electron1 CVE
- 982.critters1 CVE
- 983.crossenv1 CVE
- 984.cross-env.js1 CVE
- 985.cross-spawn1 CVE
- 986.cruddl1 CVE
- 987.crud-query-parser1 CVE
- 988.crumb1 CVE
- 989.cryo1 CVE
- 990.cryptiles1 CVE
- 991.crypto-es1 CVE
- 992.cryptpad1 CVE
- 993.csrf-lite1 CVE
- 994.csvjson1 CVE
- 995.csv-parse1 CVE
- 996.csvtojson1 CVE
- 997.cuciuci1 CVE
- 998.cue-sdk-node1 CVE
- 999.cumulative-distribution-function1 CVE
- 1,000.curling1 CVE
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →