npm Package Vulnerabilities
All 2,647 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,291 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 1,551.lab6.brit951 CVE
- 1,552.lab6drewfusbyu1 CVE
- 1,553.@lambda-middleware/json-deserializer1 CVE
- 1,554.@langchain/core1 CVE
- 1,555.@langchain/langgraph-checkpoint-mongodb1 CVE
- 1,556.@langchain/langgraph-checkpoint-redis1 CVE
- 1,557.larvitbase-api1 CVE
- 1,558.launchpad1 CVE
- 1,559.lazysizes1 CVE
- 1,560.ldapauth1 CVE
- 1,561.ldapauth-fork1 CVE
- 1,562.@leanprover/unicode-input-component1 CVE
- 1,563.lemonldap-ng-handler1 CVE
- 1,564.lessindex1 CVE
- 1,565.less-openui51 CVE
- 1,566.lettersanitizer1 CVE
- 1,567.libnmap1 CVE
- 1,568.libnotify1 CVE
- 1,569.libp2p1 CVE
- 1,570.@libp2p/kad-dht1 CVE
- 1,571.libpq1 CVE
- 1,572.libsbml1 CVE
- 1,573.libsbmlsim1 CVE
- 1,574.libxl1 CVE
- 1,575.libyaml1 CVE
- 1,576.liferay-ckeditor1 CVE
- 1,577.lifion-verify-deps1 CVE
- 1,578.lightning-flow-scanner1 CVE
- 1,579.lightning-server1 CVE
- 1,580.lilconfig1 CVE
- 1,581.limbus-buildgen1 CVE
- 1,582.limdu1 CVE
- 1,583.line-desktop-mcp1 CVE
- 1,584.linkifyjs1 CVE
- 1,585.linux-cmdline1 CVE
- 1,586.@lionello/secp256k1-js1 CVE
- 1,587.list-n-stream1 CVE
- 1,588.lite-dev-server1 CVE
- 1,589.lite-server1 CVE
- 1,590.litespeed.js1 CVE
- 1,591.lite-web-server1 CVE
- 1,592.liuyaserver1 CVE
- 1,593.lix1 CVE
- 1,594.liyujing1 CVE
- 1,595.locize1 CVE
- 1,596.lockfile-lint-api1 CVE
- 1,597.lodahs1 CVE
- 1,598.lodash.defaultsdeep1 CVE
- 1,599.lodash.pick1 CVE
- 1,600.lodash.set1 CVE
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →