Packagist Package Vulnerabilities
All 919 PHP / Composer packages with known CVEs, ranked by live CVE volume — 5,801 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.
- 351.ptrofimov/beanstalk_console2 CVEs
- 352.react/http2 CVEs
- 353.rhukster/dom-sanitizer2 CVEs
- 354.robrichards/xmlseclibs2 CVEs
- 355.s9y/serendipity2 CVEs
- 356.sabre/dav2 CVEs
- 357.s-cart/core2 CVEs
- 358.s-cart/s-cart2 CVEs
- 359.setasign/fpdi2 CVEs
- 360.shuchkin/simplexlsx2 CVEs
- 361.simogeo/filemanager2 CVEs
- 362.simplesamlphp/saml2-legacy2 CVEs
- 363.simplesamlphp/simplesamlphp-module-casserver2 CVEs
- 364.simplesamlphp/simplesamlphp-module-infocard2 CVEs
- 365.sjbr/sr-freecap2 CVEs
- 366.slim/slim2 CVEs
- 367.solspace/craft-freeform2 CVEs
- 368.spipu/html2pdf2 CVEs
- 369.starcitizentools/tabber-neue2 CVEs
- 370.swiftmailer/swiftmailer2 CVEs
- 371.sylius/grid-bundle2 CVEs
- 372.symfony/framework-bundle2 CVEs
- 373.symfony/http-client2 CVEs
- 374.symfony/polyfill2 CVEs
- 375.symfony/process2 CVEs
- 376.symfony/runtime2 CVEs
- 377.symfony/twig-bridge2 CVEs
- 378.symfony/validator2 CVEs
- 379.symphonycms/symphony-22 CVEs
- 380.t3/dce2 CVEs
- 381.tikiwiki/tiki-manager2 CVEs
- 382.tltneon/lgsl2 CVEs
- 383.topthink/think2 CVEs
- 384.topthink/thinkphp2 CVEs
- 385.tpwd/ke_search2 CVEs
- 386.typo3/cms-beuser2 CVEs
- 387.typo3/cms-dashboard2 CVEs
- 388.typo3/cms-indexed-search2 CVEs
- 389.typo3/cms-workspaces2 CVEs
- 390.typo3fluid/fluid2 CVEs
- 391.typo3/phar-stream-wrapper2 CVEs
- 392.verbb/image-resizer2 CVEs
- 393.verbb/knock-knock2 CVEs
- 394.vufind/vufind2 CVEs
- 395.web-auth/webauthn-lib2 CVEs
- 396.web-tp3/wec_map2 CVEs
- 397.winter/wn-backend-module2 CVEs
- 398.winter/wn-cms-module2 CVEs
- 399.wp-graphql/wp-graphql2 CVEs
- 400.yiisoft/yii2-authclient2 CVEs
Which Packagist packages run in YOUR stack?
EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.
Start Free Scan →