GitHub topics: cve-2024-34102
wubinworks/magento2-jwt-auth-patch
Fix the JWT authentication vulnerability on certain Magento 2 versions. Deny tokens issued by old encryption key. If you cannot upgrade Magento or cannot apply the official patch, try this one.
Language: PHP - Size: 8.79 KB - Last synced at: about 2 months ago - Pushed at: 5 months ago - Stars: 2 - Forks: 1
SamJUK/cosmicsting-validator
CosmicSting (CVE-2024-34102) POC / Patch Validator
Language: Python - Size: 5.86 KB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
wubinworks/magento2-cosmic-sting-patch
An alternative solution(as a Magento 2 extension) to fix the XXE vulnerability CVE-2024-34102(aka Cosmic Sting). If you cannot upgrade Magento or cannot apply the official patch, try this one.
Language: PHP - Size: 17.6 KB - Last synced at: 23 days ago - Pushed at: 3 months ago - Stars: 1 - Forks: 0
wubinworks/magento2-enhanced-xml-security
A replacement of `\Magento\Framework\Xml\Security` for Magento 2 with enhanced XML Security.
Language: PHP - Size: 9.77 KB - Last synced at: about 2 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 1
wubinworks/magento2-encryption-key-manager-cli
A utility for Magento 2 encryption key rotation and management. CVE-2024-34102(aka Cosmic Sting) victims can use it as an aftercare.
Language: PHP - Size: 9.77 KB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 1
bughuntar/CVE-2024-34102
Exploitation CVE-2024-34102
Language: Go - Size: 19.5 KB - Last synced at: 8 months ago - Pushed at: 10 months ago - Stars: 3 - Forks: 2
bughuntar/CVE-2024-34102-Python
CVE-2024-34102 Exploiter based on Python
Language: Python - Size: 19.5 KB - Last synced at: 10 months ago - Pushed at: 10 months ago - Stars: 0 - Forks: 0