cosmic-sting

Here are 2 public repositories matching this topic...

wubinworks / magento2-jwt-auth-patch

Fix the JWT authentication vulnerability on certain Magento 2 versions. Deny tokens issued by old encryption key. If you cannot upgrade Magento or cannot apply the official patch, try this one.

jwt magento2 encryption-key token patch jwt-authentication webapi key-rotation cve-2024-34102 cosmic-sting

Updated Dec 10, 2024
PHP

wubinworks / magento2-encryption-key-manager-cli

Star

A utility for Magento 2 encryption key rotation and management. CVE-2024-34102(aka Cosmic Sting) victims can use it as an aftercare.

cli magento2 encryption-key key-generation deployment-automation key-rotation cve-2024-34102 cosmic-sting

Updated Dec 4, 2024
PHP

Improve this page

Add a description, image, and links to the cosmic-sting topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the cosmic-sting topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly