npm Package Vulnerabilities

All 2,642 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,231 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 201.vue-i18n4 CVEs
  2. 202.webpack4 CVEs
  3. 203.wrangler4 CVEs
  4. 204.xdlocalstorage4 CVEs
  5. 205.yui4 CVEs
  6. 206.@adonisjs/bodyparser3 CVEs
  7. 207.agnai3 CVEs
  8. 208.@angular/service-worker3 CVEs
  9. 209.@astrojs/node3 CVEs
  10. 210.aws-cdk-lib3 CVEs
  11. 211.basic-ftp3 CVEs
  12. 212.blamer3 CVEs
  13. 213.browserify-shim3 CVEs
  14. 214.bson3 CVEs
  15. 215.@builder.io/qwik3 CVEs
  16. 216.@ckeditor/ckeditor5-markdown-gfm3 CVEs
  17. 217.clawdbot3 CVEs
  18. 218.@clerk/astro3 CVEs
  19. 219.@clerk/backend3 CVEs
  20. 220.@clerk/express3 CVEs
  21. 221.@clerk/fastify3 CVEs
  22. 222.@clerk/nuxt3 CVEs
  23. 223.codecov3 CVEs
  24. 224.connect3 CVEs
  25. 225.convict3 CVEs
  26. 226.debug3 CVEs
  27. 227.dns-sync3 CVEs
  28. 228.docsify3 CVEs
  29. 229.dojox3 CVEs
  30. 230.dset3 CVEs
  31. 231.ecstatic3 CVEs
  32. 232.@evomap/evolver3 CVEs
  33. 233.@fastify/express3 CVEs
  34. 234.@fastify/reply-from3 CVEs
  35. 235.feathers-sequelize3 CVEs
  36. 236.glance3 CVEs
  37. 237.grunt3 CVEs
  38. 238.@hulumi/policies3 CVEs
  39. 239.i18next-http-middleware3 CVEs
  40. 240.immer3 CVEs
  41. 241.@intlify/core3 CVEs
  42. 242.@intlify/core-base3 CVEs
  43. 243.@janhq/core3 CVEs
  44. 244.@jmondi/url-to-png3 CVEs
  45. 245.jodit3 CVEs
  46. 246.jointjs3 CVEs
  47. 247.jose3 CVEs
  48. 248.jose-node-cjs-runtime3 CVEs
  49. 249.jose-node-esm-runtime3 CVEs
  50. 250.json-pointer3 CVEs

Which npm packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →