npm Package Vulnerabilities

All 2,647 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,296 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 1,701.module-from-string1 CVE
  2. 1,702.mojic1 CVE
  3. 1,703.mongodb1 CVE
  4. 1,704.mongodb-client-encryption1 CVE
  5. 1,705.mongodb-instance1 CVE
  6. 1,706.@mongodb-js/connection-form1 CVE
  7. 1,707.mongodb-query-parser1 CVE
  8. 1,708.mongose1 CVE
  9. 1,709.monorepo-build1 CVE
  10. 1,710.mootools-more1 CVE
  11. 1,711.morgan1 CVE
  12. 1,712.morgan-json1 CVE
  13. 1,713.morris.js1 CVE
  14. 1,714.mosc1 CVE
  15. 1,715.mosca1 CVE
  16. 1,716.mpregular1 CVE
  17. 1,717.mqtt1 CVE
  18. 1,718.mquery1 CVE
  19. 1,719.msgpack51 CVE
  20. 1,720.msgpackr1 CVE
  21. 1,721.mssql.js1 CVE
  22. 1,722.mssql-node1 CVE
  23. 1,723.m.static1 CVE
  24. 1,724.mt7688-wiscan1 CVE
  25. 1,725.@musistudio/claude-code-router1 CVE
  26. 1,726.mustache1 CVE
  27. 1,727.myprolyz1 CVE
  28. 1,728.myserver.alexcthomas181 CVE
  29. 1,729.mysqljs1 CVE
  30. 1,730.mystem1 CVE
  31. 1,731.mystem31 CVE
  32. 1,732.mystem-fix1 CVE
  33. 1,733.mystem-wrapper1 CVE
  34. 1,734.n1581 CVE
  35. 1,735.@n8n/n8n-nodes-langchain1 CVE
  36. 1,736.n8n-nodes-base1 CVE
  37. 1,737.nanotar1 CVE
  38. 1,738.napi-postinstall1 CVE
  39. 1,739.native-opencv1 CVE
  40. 1,740.nats1 CVE
  41. 1,741.nats.ws1 CVE
  42. 1,742.nbdime1 CVE
  43. 1,743.nbdime-jupyterlab1 CVE
  44. 1,744.nconf1 CVE
  45. 1,745.nconf-toml1 CVE
  46. 1,746.@ndhoule/defaults1 CVE
  47. 1,747.nedb1 CVE
  48. 1,748.negotiator1 CVE
  49. 1,749.nemo-appium1 CVE
  50. 1,750.neotoma1 CVE

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →