npm Package Vulnerabilities
All 2,648 JavaScript / Node.js packages with known CVEs, ranked by live CVE volume — 5,351 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 2,551.vue-template-compiler1 CVE
- 2,552.vvvebjs1 CVE
- 2,553.vvvebJs1 CVE
- 2,554.@wangeditor/editor1 CVE
- 2,555.wangguojing1231 CVE
- 2,556.wasdk1 CVE
- 2,557.waterline-sequel1 CVE
- 2,558.wazuh1 CVE
- 2,559.@wdio/browserstack-service1 CVE
- 2,560.weather.swlyons1 CVE
- 2,561.web3-core-method1 CVE
- 2,562.web3-core-subscriptions1 CVE
- 2,563.@web3-react/coinbase-wallet1 CVE
- 2,564.@web3-react/eip11931 CVE
- 2,565.@web3-react/metamask1 CVE
- 2,566.@web3-react/walletconnect1 CVE
- 2,567.web3-utils1 CVE
- 2,568.webcrack1 CVE
- 2,569.webdriver-launcher1 CVE
- 2,570.webdrvr1 CVE
- 2,571.webfinger.js1 CVE
- 2,572.@webiny/react-rich-text-renderer1 CVE
- 2,573.webmention.js1 CVE
- 2,574.web-node-server1 CVE
- 2,575.webpack-dev-middleware1 CVE
- 2,576.webpack-subresource-integrity1 CVE
- 2,577.@webrecorder/archivewebpage1 CVE
- 2,578.@webrecorder/wabac1 CVE
- 2,579.webrtc-native1 CVE
- 2,580.websocket-extensions1 CVE
- 2,581.webtorrent1 CVE
- 2,582.webui-aria21 CVE
- 2,583.welcomyzt1 CVE
- 2,584.wffserve1 CVE
- 2,585.whatsapp-api-js1 CVE
- 2,586.whereis1 CVE
- 2,587.@whiskeysockets/baileys1 CVE
- 2,588.whispercast1 CVE
- 2,589.whistle1 CVE
- 2,590.whois1 CVE
- 2,591.@whyour/qinglong1 CVE
- 2,592.wifey1 CVE
- 2,593.wifiscanner1 CVE
- 2,594.willitmerge1 CVE
- 2,595.wincred1 CVE
- 2,596.wind-mvc1 CVE
- 2,597.window-control1 CVE
- 2,598.windows-build-tools1 CVE
- 2,599.windows-cpu1 CVE
- 2,600.windows-iedriver1 CVE
Which npm packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →