Libraries tagged by magento2 patches
markshust/magento2-module-polyshell-patch
77863 Downloads
The PolyshellPatch module mitigates the PolyShell vulnerability (APSB25-94) — an unrestricted file upload in the Magento REST API that allows attackers to upload executable files via cart item custom option file uploads.
discorgento/module-migrations
17017 Downloads
A dev-friendly approach to quickly create migrations (patch data) on Magento 2
zero1limited/magento2-patches
15553 Downloads
Patches for core Magento2
samjuk/m2-meta-security-patches
191 Downloads
Composer meta-package that applies critical and isolated security patches for Magento 2 / Adobe Commerce, released by Adobe
elgentos/magento2-composer-quality-patches
16695 Downloads
Converts Magento's Quality Patches to a JSON format to be used with vaimo/composer-patches
wubinworks/module-session-reaper-patch
475 Downloads
Patch for CVE-2025-54236(a.k.a Session Reaper) which allows customer account takeover and RCE under certain conditions. This patch is actually a Magento 2 extension and universal compatible for Magento 2.3 & 2.4. If you cannot upgrade Magento or cannot apply the official hotfix, try this one.
hryvinskyi/magento2-composer-quality-patches
149 Downloads
Composer plugin for automatic Magento quality patches installation
wubinworks/module-cosmic-sting-patch
490 Downloads
An alternative solution(as a Magento 2 extension) to fix the XXE vulnerability CVE-2024-34102(aka Cosmic Sting). If you cannot upgrade Magento or cannot apply the official patch, try this one.
magetu/module-data-cleanup
79 Downloads
Magento 2 framework for removing the database footprint (tables, columns, indexes, EAV attributes, config, ACL rules, patch history) a module leaves behind after it is uninstalled.
space48/magento2-patches
2791 Downloads
A collection of patches for core Magento2
akai/magento2-patches
0 Downloads
Magento 2.x patches mirror repository
akai/magento2-os-patches
6 Downloads
Magento 2.x patches mirror repository
wubinworks/module-template-filter-patch
16 Downloads
Magento 2 patch for CVE-2022-24086, CVE-2022-24087. Fix the RCE vulnerability and related bugs by performing deep template variable escaping. If you cannot upgrade Magento or cannot apply the official patches, try this one.
akai/magento2-open-source-patches
0 Downloads
Magento 2.x patches mirror repository
grimlink/magento-bfcache-patches
1 Downloads
Patches to enable and optimize Back/Forward Cache (BFCache) support in Magento 2