Packagist Package Vulnerabilities

All 922 PHP / Composer packages with known CVEs, ranked by live CVE volume — 5,845 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 751.pimcore/web2print-tools-bundle1 CVE
  2. 752.pi/pi1 CVE
  3. 753.plotly/plotly.js1 CVE
  4. 754.pocketmine/pocketmine-mp1 CVE
  5. 755.poweradmin/poweradmin1 CVE
  6. 756.pressbooks/pressbooks1 CVE
  7. 757.prestashop/blockwishlist1 CVE
  8. 758.prestashop/contactform1 CVE
  9. 759.prestashop/ps_contactinfo1 CVE
  10. 760.prestashop/ps_emailsubscription1 CVE
  11. 761.prestashop/ps_linklist1 CVE
  12. 762.psy/psysh1 CVE
  13. 763.ptheofan/yii2-statemachine1 CVE
  14. 764.pubnub/pubnub1 CVE
  15. 765.punktde/pt_extbase1 CVE
  16. 766.putyourlightson/craft-sprig1 CVE
  17. 767.pxlrbt/filament-excel1 CVE
  18. 768.rainlab/blog-plugin1 CVE
  19. 769.rainlab/debugbar-plugin1 CVE
  20. 770.rainlab/user-plugin1 CVE
  21. 771.ralffreit/mfa-email1 CVE
  22. 772.rankmath/seo-by-rank-math1 CVE
  23. 773.rap2hpoutre/laravel-log-viewer1 CVE
  24. 774.really-simple-plugins/complianz-gdpr1 CVE
  25. 775.renolit/reint-downloadmanager1 CVE
  26. 776.rmccue/requests1 CVE
  27. 777.roadiz/openid1 CVE
  28. 778.roots/soil1 CVE
  29. 779.sabberworm/php-css-parser1 CVE
  30. 780.samwilson/unlinked-wikibase1 CVE
  31. 781.serluck/phpwhois1 CVE
  32. 782.sfroemken/url_redirect1 CVE
  33. 783.sheng/yiicms1 CVE
  34. 784.shopper/cart1 CVE
  35. 785.silverstripe-australia/advancedreports1 CVE
  36. 786.silverstripe/hybridsessions1 CVE
  37. 787.silverstripe/recipe-cms1 CVE
  38. 788.silverstripe/registry1 CVE
  39. 789.silverstripe/reports1 CVE
  40. 790.silverstripe/restfulserver1 CVE
  41. 791.silverstripe/silverstripe-omnipay1 CVE
  42. 792.silverstripe/subsites1 CVE
  43. 793.silverstripe/userforms1 CVE
  44. 794.silverstripe/versioned-admin1 CVE
  45. 795.simplesamlphp/simplesamlphp-module-openid1 CVE
  46. 796.simplesamlphp/simplesamlphp-module-openidprovider1 CVE
  47. 797.simplesamlphp/xml-common1 CVE
  48. 798.simplesamlphp/xml-security1 CVE
  49. 799.simple-updates/phpwhois1 CVE
  50. 800.simplito/elliptic-php1 CVE

Which Packagist packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →