Libraries tagged by cosmicsting
sansec/magento2-module-cosmic-sting-jwt
16 Favers
14904 Downloads
14904 Downloads
wubinworks/module-cosmic-sting-patch
1 Favers
62 Downloads
62 Downloads
Another way(as an extension) to fix CVE-2024-34102(XXE vulnerability) with extra XML Security enhancement. If you cannot upgrade Magento or cannot apply the official patch, this one is an alternative solution.
wubinworks/module-xml-security
0 Favers
13 Downloads
13 Downloads
A replacement of `\Magento\Framework\Xml\Security` for Magento 2 with enhanced security.
wubinworks/module-encryption-key-manager-cli
0 Favers
6 Downloads
6 Downloads
A utility for Magento 2 encryption key rotation and management. CVE-2024-34102(aka Cosmic Sting) victims can use it as an aftercare.
wubinworks/module-jwt-auth-patch
1 Favers
0 Downloads
0 Downloads
Fix the JWT authentication vulnerability on certain Magento 2 versions. Deny tokens issued by old encryption key. If you cannot upgrade Magento or cannot apply the official patch, try this one.