Packagist Package Vulnerabilities
All 922 PHP / Composer packages with known CVEs, ranked by live CVE volume — 5,845 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 751.pimcore/web2print-tools-bundle1 CVE
- 752.pi/pi1 CVE
- 753.plotly/plotly.js1 CVE
- 754.pocketmine/pocketmine-mp1 CVE
- 755.poweradmin/poweradmin1 CVE
- 756.pressbooks/pressbooks1 CVE
- 757.prestashop/blockwishlist1 CVE
- 758.prestashop/contactform1 CVE
- 759.prestashop/ps_contactinfo1 CVE
- 760.prestashop/ps_emailsubscription1 CVE
- 761.prestashop/ps_linklist1 CVE
- 762.psy/psysh1 CVE
- 763.ptheofan/yii2-statemachine1 CVE
- 764.pubnub/pubnub1 CVE
- 765.punktde/pt_extbase1 CVE
- 766.putyourlightson/craft-sprig1 CVE
- 767.pxlrbt/filament-excel1 CVE
- 768.rainlab/blog-plugin1 CVE
- 769.rainlab/debugbar-plugin1 CVE
- 770.rainlab/user-plugin1 CVE
- 771.ralffreit/mfa-email1 CVE
- 772.rankmath/seo-by-rank-math1 CVE
- 773.rap2hpoutre/laravel-log-viewer1 CVE
- 774.really-simple-plugins/complianz-gdpr1 CVE
- 775.renolit/reint-downloadmanager1 CVE
- 776.rmccue/requests1 CVE
- 777.roadiz/openid1 CVE
- 778.roots/soil1 CVE
- 779.sabberworm/php-css-parser1 CVE
- 780.samwilson/unlinked-wikibase1 CVE
- 781.serluck/phpwhois1 CVE
- 782.sfroemken/url_redirect1 CVE
- 783.sheng/yiicms1 CVE
- 784.shopper/cart1 CVE
- 785.silverstripe-australia/advancedreports1 CVE
- 786.silverstripe/hybridsessions1 CVE
- 787.silverstripe/recipe-cms1 CVE
- 788.silverstripe/registry1 CVE
- 789.silverstripe/reports1 CVE
- 790.silverstripe/restfulserver1 CVE
- 791.silverstripe/silverstripe-omnipay1 CVE
- 792.silverstripe/subsites1 CVE
- 793.silverstripe/userforms1 CVE
- 794.silverstripe/versioned-admin1 CVE
- 795.simplesamlphp/simplesamlphp-module-openid1 CVE
- 796.simplesamlphp/simplesamlphp-module-openidprovider1 CVE
- 797.simplesamlphp/xml-common1 CVE
- 798.simplesamlphp/xml-security1 CVE
- 799.simple-updates/phpwhois1 CVE
- 800.simplito/elliptic-php1 CVE
Which Packagist packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →