npm Package Vulnerabilities
All 2,647 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,290 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 1,451.irrelon-path1 CVE
- 1,452.@isaacs/brace-expansion1 CVE
- 1,453.is-arrayish1 CVE
- 1,454.is-email1 CVE
- 1,455.is-http21 CVE
- 1,456.is_js1 CVE
- 1,457.isomorphic-git1 CVE
- 1,458.@isomorphic-git/cors-proxy1 CVE
- 1,459.is-url1 CVE
- 1,460.is-user-valid1 CVE
- 1,461.iter-http1 CVE
- 1,462.iter-server1 CVE
- 1,463.izimodal1 CVE
- 1,464.jadedown1 CVE
- 1,465.jailed1 CVE
- 1,466.jansenstuffpleasework1 CVE
- 1,467.jdf-sass1 CVE
- 1,468.jikes1 CVE
- 1,469.@jitbit/htmlsanitizer1 CVE
- 1,470.jn_jj_server1 CVE
- 1,471.@joeattardi/emoji-button1 CVE
- 1,472.joi1 CVE
- 1,473.@joplin/onenote-converter1 CVE
- 1,474.jplayer1 CVE
- 1,475.jquery-bbq1 CVE
- 1,476.jquery-deparam1 CVE
- 1,477.jqueryfiletree1 CVE
- 1,478.jquery.js1 CVE
- 1,479.jquery.json-viewer1 CVE
- 1,480.jquery-query-object1 CVE
- 1,481.jquery.terminal1 CVE
- 1,482.jquey1 CVE
- 1,483.js-cookie1 CVE
- 1,484.jscover1 CVE
- 1,485.js-deobfuscator1 CVE
- 1,486.jsen1 CVE
- 1,487.jser-stat1 CVE
- 1,488.js-extend1 CVE
- 1,489.js-given1 CVE
- 1,490.jsgui-lang-essentials1 CVE
- 1,491.jshamcrest1 CVE
- 1,492.js-ini1 CVE
- 1,493.json1 CVE
- 1,494.json51 CVE
- 1,495.json81 CVE
- 1,496.json8-merge-patch1 CVE
- 1,497.jsonata1 CVE
- 1,498.json-bigint1 CVE
- 1,499.jsondiffpatch1 CVE
- 1,500.json-logic-js1 CVE
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →