npm Package Vulnerabilities
All 2,642 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,231 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 201.vue-i18n4 CVEs
- 202.webpack4 CVEs
- 203.wrangler4 CVEs
- 204.xdlocalstorage4 CVEs
- 205.yui4 CVEs
- 206.@adonisjs/bodyparser3 CVEs
- 207.agnai3 CVEs
- 208.@angular/service-worker3 CVEs
- 209.@astrojs/node3 CVEs
- 210.aws-cdk-lib3 CVEs
- 211.basic-ftp3 CVEs
- 212.blamer3 CVEs
- 213.browserify-shim3 CVEs
- 214.bson3 CVEs
- 215.@builder.io/qwik3 CVEs
- 216.@ckeditor/ckeditor5-markdown-gfm3 CVEs
- 217.clawdbot3 CVEs
- 218.@clerk/astro3 CVEs
- 219.@clerk/backend3 CVEs
- 220.@clerk/express3 CVEs
- 221.@clerk/fastify3 CVEs
- 222.@clerk/nuxt3 CVEs
- 223.codecov3 CVEs
- 224.connect3 CVEs
- 225.convict3 CVEs
- 226.debug3 CVEs
- 227.dns-sync3 CVEs
- 228.docsify3 CVEs
- 229.dojox3 CVEs
- 230.dset3 CVEs
- 231.ecstatic3 CVEs
- 232.@evomap/evolver3 CVEs
- 233.@fastify/express3 CVEs
- 234.@fastify/reply-from3 CVEs
- 235.feathers-sequelize3 CVEs
- 236.glance3 CVEs
- 237.grunt3 CVEs
- 238.@hulumi/policies3 CVEs
- 239.i18next-http-middleware3 CVEs
- 240.immer3 CVEs
- 241.@intlify/core3 CVEs
- 242.@intlify/core-base3 CVEs
- 243.@janhq/core3 CVEs
- 244.@jmondi/url-to-png3 CVEs
- 245.jodit3 CVEs
- 246.jointjs3 CVEs
- 247.jose3 CVEs
- 248.jose-node-cjs-runtime3 CVEs
- 249.jose-node-esm-runtime3 CVEs
- 250.json-pointer3 CVEs
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →