Packagist Package Vulnerabilities

All 919 PHP / Composer packages with known CVEs, ranked by live CVE volume — 5,798 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 251.symfony/form3 CVEs
  2. 252.symfony/mime3 CVEs
  3. 253.symfony/routing3 CVEs
  4. 254.symfony/ux-autocomplete3 CVEs
  5. 255.torrentpier/torrentpier3 CVEs
  6. 256.typo3/cms-recycler3 CVEs
  7. 257.unisharp/laravel-filemanager3 CVEs
  8. 258.uvdesk/community-skeleton3 CVEs
  9. 259.verbb/comments3 CVEs
  10. 260.verot/class.upload.php3 CVEs
  11. 261.web-auth/webauthn-framework3 CVEs
  12. 262.wintercms/winter3 CVEs
  13. 263.yungifez/skuul3 CVEs
  14. 264.zencart/zencart3 CVEs
  15. 265.zendframework/zendopenid3 CVEs
  16. 266.zendframework/zendrest3 CVEs
  17. 267.zendframework/zendservice-amazon3 CVEs
  18. 268.zendframework/zendservice-api3 CVEs
  19. 269.zendframework/zendservice-audioscrobbler3 CVEs
  20. 270.zendframework/zendservice-nirvanix3 CVEs
  21. 271.zendframework/zendservice-slideshare3 CVEs
  22. 272.zendframework/zendservice-technorati3 CVEs
  23. 273.zendframework/zendservice-windowsazure3 CVEs
  24. 274.aimeos/ai-client-html2 CVEs
  25. 275.aimeos/ai-controller-frontend2 CVEs
  26. 276.aimeos/aimeos-core2 CVEs
  27. 277.akeneo/pim-community-dev2 CVEs
  28. 278.alexusmai/laravel-file-manager2 CVEs
  29. 279.apereo/phpcas2 CVEs
  30. 280.api-platform/graphql2 CVEs
  31. 281.athlon1600/php-proxy2 CVEs
  32. 282.athlon1600/php-proxy-app2 CVEs
  33. 283.austintoddj/canvas2 CVEs
  34. 284.backpack/crud2 CVEs
  35. 285.bacula-web/bacula-web2 CVEs
  36. 286.bolt/core2 CVEs
  37. 287.born05/craft-twofactorauthentication2 CVEs
  38. 288.cecil/cecil2 CVEs
  39. 289.codeigniter/framework2 CVEs
  40. 290.components/jquery2 CVEs
  41. 291.cpsit/typo3-mailqueue2 CVEs
  42. 292.datahihi1/tiny-env2 CVEs
  43. 293.derhansen/sf_event_mgt2 CVEs
  44. 294.dmk/webkitpdf2 CVEs
  45. 295.drupal/civictheme2 CVEs
  46. 296.drupal/google_tag2 CVEs
  47. 297.drupal/quick_node_block2 CVEs
  48. 298.elijaa/phpmemcacheadmin2 CVEs
  49. 299.encore/laravel-admin2 CVEs
  50. 300.erusev/parsedown2 CVEs

Which Packagist packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →