Packagist Package Vulnerabilities
All 919 PHP / Composer packages with known CVEs, ranked by live CVE volume — 5,804 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 551.fisharebest/webtrees1 CVE
- 552.fixpunkt/fp-masterquiz1 CVE
- 553.flarum/flarum1 CVE
- 554.flarum/mentions1 CVE
- 555.flarum/nicknames1 CVE
- 556.flarum/sticky1 CVE
- 557.floriangaerber/magnesium1 CVE
- 558.fluidtypo3/vhs1 CVE
- 559.fof/byobu1 CVE
- 560.fof/pretty-mail1 CVE
- 561.fof/upload1 CVE
- 562.foodcoopshop/foodcoopshop1 CVE
- 563.fooman/tcpdf1 CVE
- 564.frappant/frp-form-answers1 CVE
- 565.friendsofsymfony1/swiftmailer1 CVE
- 566.friendsofsymfony/user-bundle1 CVE
- 567.friendsoftypo3/mediace1 CVE
- 568.friendsoftypo3/openid1 CVE
- 569.frosh/adminer-platform1 CVE
- 570.frozennode/administrator1 CVE
- 571.gaoming13/wechat-php-sdk1 CVE
- 572.getgrav/grav-plugin-api1 CVE
- 573.getgrav/grav-plugin-form1 CVE
- 574.getkirby/starterkit1 CVE
- 575.globalpayments/php-sdk1 CVE
- 576.gogentooss/samlbase1 CVE
- 577.goodoneuz/pay-uz1 CVE
- 578.gp247/core1 CVE
- 579.gree/jose1 CVE
- 580.guzzlehttp/guzzle-services1 CVE
- 581.guzzlehttp/oauth-subscriber1 CVE
- 582.haffner/jh_captcha1 CVE
- 583.handcraftedinthealps/goodby-csv1 CVE
- 584.harvesthq/chosen1 CVE
- 585.hhxsv5/laravel-s1 CVE
- 586.hillelcoren/invoice-ninja1 CVE
- 587.himiklab/yii2-jqgrid-widget1 CVE
- 588.hjue/justwriting1 CVE
- 589.hov/jobfair1 CVE
- 590.hybridauth/hybridauth1 CVE
- 591.hyn/multi-tenant1 CVE
- 592.ibexa/fieldtype-richtext1 CVE
- 593.ibexa/user1 CVE
- 594.ilicmiljan/secure-props1 CVE
- 595.illuminate/view1 CVE
- 596.imdbphp/imdbphp1 CVE
- 597.in2code/ipandlanguageredirect1 CVE
- 598.in2code/lux1 CVE
- 599.innologi/typo3-appointments1 CVE
- 600.inter-mediator/inter-mediator1 CVE
Which Packagist packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →