npm Package Vulnerabilities

All 2,647 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,285 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 951.confucious1 CVE
  2. 952.connection-tester1 CVE
  3. 953.connect-multiparty1 CVE
  4. 954.connect-pg-simple1 CVE
  5. 955.connie-lang1 CVE
  6. 956.console-io1 CVE
  7. 957.content1 CVE
  8. 958.content-security-policy-parser1 CVE
  9. 959.ContentTools1 CVE
  10. 960.controlled-merge1 CVE
  11. 961.@conventional-changelog/git-client1 CVE
  12. 962.convert-svg-to-jpeg1 CVE
  13. 963.convert-svg-to-png1 CVE
  14. 964.cookie1 CVE
  15. 965.cookie-encrypter1 CVE
  16. 966.cookiejar1 CVE
  17. 967.cookie-signature1 CVE
  18. 968.@cookiex/deep1 CVE
  19. 969.cool-path1 CVE
  20. 970.copilot-api1 CVE
  21. 971.copy-props1 CVE
  22. 972.cordova-android1 CVE
  23. 973.cordova-plugin-fingerprint-aio1 CVE
  24. 974.cordova-plugin-ionic-webview1 CVE
  25. 975.corenlp-js-interface1 CVE
  26. 976.corenlp-js-prefab1 CVE
  27. 977.cors-anywhere1 CVE
  28. 978.counterpart1 CVE
  29. 979.coursevault-preview1 CVE
  30. 980.create-choo-app31 CVE
  31. 981.create-choo-electron1 CVE
  32. 982.critters1 CVE
  33. 983.crossenv1 CVE
  34. 984.cross-env.js1 CVE
  35. 985.cross-spawn1 CVE
  36. 986.cruddl1 CVE
  37. 987.crud-query-parser1 CVE
  38. 988.crumb1 CVE
  39. 989.cryo1 CVE
  40. 990.cryptiles1 CVE
  41. 991.crypto-es1 CVE
  42. 992.cryptpad1 CVE
  43. 993.csrf-lite1 CVE
  44. 994.csvjson1 CVE
  45. 995.csv-parse1 CVE
  46. 996.csvtojson1 CVE
  47. 997.cuciuci1 CVE
  48. 998.cue-sdk-node1 CVE
  49. 999.cumulative-distribution-function1 CVE
  50. 1,000.curling1 CVE

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →