PHPackages                             deployecommerce/module-trojan-order-prevent - PHPackages - PHPackages  [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register)

1. [Directory](/)
2. /
3. [Security](/categories/security)
4. /
5. deployecommerce/module-trojan-order-prevent

ActiveMagento2-module[Security](/categories/security)

deployecommerce/module-trojan-order-prevent
===========================================

A Magento2 extension that prevents billing/shipping addresses being saved via the API with known trojan order strings.

1.0.4(1y ago)3751.4k↓48%5[4 issues](https://github.com/DeployEcommerce/module-trojan-order-prevent/issues)MITPHP

Since Aug 2Pushed 1y ago3 watchersCompare

[ Source](https://github.com/DeployEcommerce/module-trojan-order-prevent)[ Packagist](https://packagist.org/packages/deployecommerce/module-trojan-order-prevent)[ RSS](/packages/deployecommerce-module-trojan-order-prevent/feed)WikiDiscussions main Synced today

READMEChangelog (4)DependenciesVersions (6)Used By (0)

module-trojan-order-prevent
===========================

[](#module-trojan-order-prevent)

This is a Magento 2 extension that prevents billing/shipping addresses being saved via the API with known trojan order strings. This is *not a fix* for CVE-2022-24086 but an additional layer of protection for merchants.

Although patched in most recent Magento versions we still see probes for this which look rather unsightly for merchants in the orders screen of Magento.

This module adds two plugins to the `Magento\Quote\Api\BillingAddressManagementInterface`and the `Magento\Quote\Model\ShippingAddressManagementInterface` to prevent the saving of addresses with the following strings:

```
gettemplate
base64_
afterfiltercall
.filter(
magdemo9816@proton.me
.php
this.getTemp
{{var

```

If these are detected in the payload then an Exception is thrown and the address is not saved.

### Installation

[](#installation)

```
composer require deployecommerce/module-trojan-order-prevent
bin/magento mo:e DeployEcommerce_TrojanOrderPrevent
```

### Further Reading

[](#further-reading)

-
-
-
-
- [magento/magento2#36691](https://github.com/magento/magento2/issues/36691)

### License

[](#license)

This module is licensed under the MIT License. See the [LICENSE](LICENSE.md) file for details.

###  Health Score

35

—

LowBetter than 77% of packages

Maintenance30

Infrequent updates — may be unmaintained

Popularity41

Moderate usage in the ecosystem

Community12

Small or concentrated contributor base

Maturity44

Maturing project, gaining track record

 Bus Factor1

Top contributor holds 100% of commits — single point of failure

How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window.

**Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores.

**Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement.

**Maturity (30%)** — Project age, version count, PHP version support, and release stability.

###  Release Activity

Cadence

Every ~3 days

Total

5

Last Release

688d ago

### Community

Maintainers

![](https://avatars.githubusercontent.com/u/254889?v=4)[Scott](/maintainers/ssx)[@ssx](https://github.com/ssx)

![](https://avatars.githubusercontent.com/u/2587545?v=4)[Nathan Chick](/maintainers/nathanchick)[@nathanchick](https://github.com/nathanchick)

---

Top Contributors

[![ssx](https://avatars.githubusercontent.com/u/254889?v=4)](https://github.com/ssx "ssx (5 commits)")

---

Tags

magentomagento2adobe commercetrojanorder

### Embed Badge

![Health badge](/badges/deployecommerce-module-trojan-order-prevent/health.svg)

```
[![Health](https://phpackages.com/badges/deployecommerce-module-trojan-order-prevent/health.svg)](https://phpackages.com/packages/deployecommerce-module-trojan-order-prevent)
```

PHPackages © 2026

[Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)
