npm Package Vulnerabilities
All 2,648 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,340 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 2,251.shelljs1 CVE
- 2,252.shenliru1 CVE
- 2,253.shit-server1 CVE
- 2,254.@shopify/hydrogen1 CVE
- 2,255.@shopify/koa-shopify-auth1 CVE
- 2,256.short-video-maker1 CVE
- 2,257.shout1 CVE
- 2,258.showdown1 CVE
- 2,259.shvl1 CVE
- 2,260.@sideway/formula1 CVE
- 2,261.@signalk/set-system-time1 CVE
- 2,262.@simonsmith/cypress-image-snapshot1 CVE
- 2,263.simple-get1 CVE
- 2,264.simplemde1 CVE
- 2,265.simple-npm-registry1 CVE
- 2,266.simple-plist1 CVE
- 2,267.simple-swizzle1 CVE
- 2,268.simpl-schema1 CVE
- 2,269.simstudio1 CVE
- 2,270.siteserver1 CVE
- 2,271.sjcl1 CVE
- 2,272.skeemas1 CVE
- 2,273.sketchsvg1 CVE
- 2,274.skywalking-backend-js1 CVE
- 2,275.slashify1 CVE
- 2,276.slimerjs-edge1 CVE
- 2,277.slim-select1 CVE
- 2,278.slug1 CVE
- 2,279.sly071 CVE
- 2,280.smartbanner.js1 CVE
- 2,281.smartctl1 CVE
- 2,282.smb1 CVE
- 2,283.smoothie1 CVE
- 2,284.snarkjs1 CVE
- 2,285.snyk-docker-plugin1 CVE
- 2,286.snyk-go-plugin1 CVE
- 2,287.snyk-mvn-plugin1 CVE
- 2,288.snyk-php-plugin1 CVE
- 2,289.snyk-python-plugin1 CVE
- 2,290.snyk-sbt-plugin1 CVE
- 2,291.@snyk/snyk-cocoapods-plugin1 CVE
- 2,292.@snyk/snyk-hex-plugin1 CVE
- 2,293.soci1 CVE
- 2,294.@soketi/soketi1 CVE
- 2,295.@solana/pay1 CVE
- 2,296.solid-js1 CVE
- 2,297.sonar-wrapper1 CVE
- 2,298.speaker1 CVE
- 2,299.spmrc1 CVE
- 2,300.spritesheet-js1 CVE
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →