PHPackages deployecommerce/module-trojan-order-prevent - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. deployecommerce/module-trojan-order-prevent ActiveMagento2-module deployecommerce/module-trojan-order-prevent =========================================== A Magento2 extension that prevents billing/shipping addresses being saved via the API with known trojan order strings. 1.0.4(1y ago)3644.1k↓14%5[4 issues](https://github.com/DeployEcommerce/module-trojan-order-prevent/issues)MITPHP Since Aug 2Pushed 1y ago3 watchersCompare [ Source](https://github.com/DeployEcommerce/module-trojan-order-prevent)[ Packagist](https://packagist.org/packages/deployecommerce/module-trojan-order-prevent)[ RSS](/packages/deployecommerce-module-trojan-order-prevent/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (4)DependenciesVersions (6)Used By (0) module-trojan-order-prevent =========================== [](#module-trojan-order-prevent) This is a Magento 2 extension that prevents billing/shipping addresses being saved via the API with known trojan order strings. This is *not a fix* for CVE-2022-24086 but an additional layer of protection for merchants. Although patched in most recent Magento versions we still see probes for this which look rather unsightly for merchants in the orders screen of Magento. This module adds two plugins to the `Magento\Quote\Api\BillingAddressManagementInterface`and the `Magento\Quote\Model\ShippingAddressManagementInterface` to prevent the saving of addresses with the following strings: ``` gettemplate base64_ afterfiltercall .filter( magdemo9816@proton.me .php this.getTemp {{var ``` If these are detected in the payload then an Exception is thrown and the address is not saved. ### Installation [](#installation) ``` composer require deployecommerce/module-trojan-order-prevent bin/magento mo:e DeployEcommerce_TrojanOrderPrevent ``` ### Further Reading [](#further-reading) - - - - - [magento/magento2#36691](https://github.com/magento/magento2/issues/36691) ### License [](#license) This module is licensed under the MIT License. See the [LICENSE](LICENSE.md) file for details. ### Health Score 35 — LowBetter than 80% of packages Maintenance31 Infrequent updates — may be unmaintained Popularity41 Moderate usage in the ecosystem Community12 Small or concentrated contributor base Maturity43 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~3 days Total 5 Last Release 642d ago ### Community Maintainers ![](https://avatars.githubusercontent.com/u/254889?v=4)[Scott](/maintainers/ssx)[@ssx](https://github.com/ssx) ![](https://avatars.githubusercontent.com/u/2587545?v=4)[Nathan Chick](/maintainers/nathanchick)[@nathanchick](https://github.com/nathanchick) --- Top Contributors [![ssx](https://avatars.githubusercontent.com/u/254889?v=4)](https://github.com/ssx "ssx (5 commits)") --- Tags magentomagento2adobe commercetrojanorder ### Embed Badge ![Health badge](/badges/deployecommerce-module-trojan-order-prevent/health.svg) ``` [![Health](https://phpackages.com/badges/deployecommerce-module-trojan-order-prevent/health.svg)](https://phpackages.com/packages/deployecommerce-module-trojan-order-prevent) ``` ### Alternatives [smile/elasticsuite Magento 2 merchandising and search engine built on ElasticSearch 8044.5M33](/packages/smile-elasticsuite)[markshust/magento2-module-disabletwofactorauth The DisableTwoFactorAuth module provides the ability to disable two-factor authentication. 2282.7M6](/packages/markshust-magento2-module-disabletwofactorauth)[redchamps/module-clean-admin-menu It will merge all third party extensions menu items to single menu item named 'Extensions'. 164416.3k](/packages/redchamps-module-clean-admin-menu)[imaginaerum/magento2-language-fr-fr Magento2 French Language Pack (fr\_FR) 41738.1k2](/packages/imaginaerum-magento2-language-fr-fr)[smile/module-elasticsuite-cms-search Smile Elasticsuite - Cms Pages Search Module for Smile Elasticsuite. 25916.7k1](/packages/smile-module-elasticsuite-cms-search)[sehrling/elasticsuite-ghost-cleaner Magento 2 module to delete ghost indices automatically for the Smile Elasticsuite module 1789.0k](/packages/sehrling-elasticsuite-ghost-cleaner) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)