Libraries tagged by cosmic sting
sansec/magento2-module-cosmic-sting-jwt
17 Favers
18519 Downloads
18519 Downloads
wubinworks/module-cosmic-sting-patch
1 Favers
84 Downloads
84 Downloads
An alternative solution(as a Magento 2 extension) to fix the XXE vulnerability CVE-2024-34102(aka Cosmic Sting). If you cannot upgrade Magento or cannot apply the official patch, try this one.
wubinworks/module-xml-security
0 Favers
21 Downloads
21 Downloads
A replacement of `\Magento\Framework\Xml\Security` for Magento 2 with enhanced security.
wubinworks/module-jwt-auth-patch
2 Favers
1 Downloads
1 Downloads
Fix the JWT authentication vulnerability on certain Magento 2 versions. Deny tokens issued by old encryption key. If you cannot upgrade Magento or cannot apply the official patch, try this one.
wubinworks/module-encryption-key-manager-cli
0 Favers
6 Downloads
6 Downloads
A utility for Magento 2 encryption key rotation and management. CVE-2024-34102(aka Cosmic Sting) victims can use it as an aftercare.