npm Package Vulnerabilities

All 2,648 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,342 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 2,351.superagent1 CVE
  2. 2,352.superjson1 CVE
  3. 2,353.supermixer1 CVE
  4. 2,354.survey-creator1 CVE
  5. 2,355.susu-sum1 CVE
  6. 2,356.svelecte1 CVE
  7. 2,357.@sveltejs/adapter-vercel1 CVE
  8. 2,358.sveltekit-superforms1 CVE
  9. 2,359.svg2png1 CVE
  10. 2,360.svgo1 CVE
  11. 2,361.swagger-ui-dist1 CVE
  12. 2,362.swig1 CVE
  13. 2,363.swig-templates1 CVE
  14. 2,364.swiper1 CVE
  15. 2,365.switcher-client1 CVE
  16. 2,366.sync-exec1 CVE
  17. 2,367.synckit1 CVE
  18. 2,368.syntax-error1 CVE
  19. 2,369.sysend1 CVE
  20. 2,370.tabby-ssh1 CVE
  21. 2,371.tableexport.jquery.plugin1 CVE
  22. 2,372.taffy1 CVE
  23. 2,373.taffydb1 CVE
  24. 2,374.takeapeek1 CVE
  25. 2,375.@tanstack/arktype-adapter1 CVE
  26. 2,376.@tanstack/eslint-plugin-router1 CVE
  27. 2,377.@tanstack/eslint-plugin-start1 CVE
  28. 2,378.@tanstack/form-core1 CVE
  29. 2,379.@tanstack/history1 CVE
  30. 2,380.@tanstack/nitro-v2-vite-plugin1 CVE
  31. 2,381.@tanstack/react-query-next-experimental1 CVE
  32. 2,382.@tanstack/react-router1 CVE
  33. 2,383.@tanstack/react-router-devtools1 CVE
  34. 2,384.@tanstack/react-router-ssr-query1 CVE
  35. 2,385.@tanstack/react-start1 CVE
  36. 2,386.@tanstack/react-start-client1 CVE
  37. 2,387.@tanstack/react-start-rsc1 CVE
  38. 2,388.@tanstack/react-start-server1 CVE
  39. 2,389.@tanstack/router-cli1 CVE
  40. 2,390.@tanstack/router-core1 CVE
  41. 2,391.@tanstack/router-devtools1 CVE
  42. 2,392.@tanstack/router-devtools-core1 CVE
  43. 2,393.@tanstack/router-generator1 CVE
  44. 2,394.@tanstack/router-plugin1 CVE
  45. 2,395.@tanstack/router-ssr-query-core1 CVE
  46. 2,396.@tanstack/router-utils1 CVE
  47. 2,397.@tanstack/router-vite-plugin1 CVE
  48. 2,398.@tanstack/solid-router1 CVE
  49. 2,399.@tanstack/solid-router-devtools1 CVE
  50. 2,400.@tanstack/solid-router-ssr-query1 CVE

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →