PHPackages fredmansky/craft-rce-fix - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. fredmansky/craft-rce-fix ActiveCraft-plugin[Security](/categories/security) fredmansky/craft-rce-fix ======================== Fixes handle rce vulnerability. 1.0.2(1y ago)0483mitPHPPHP >=8 Since Apr 11Pushed 1y ago1 watchersCompare [ Source](https://github.com/fredmansky/FREDMANSKY_RCE_FIX_01)[ Packagist](https://packagist.org/packages/fredmansky/craft-rce-fix)[ RSS](/packages/fredmansky-craft-rce-fix/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (3)Dependencies (3)Versions (4)Used By (0) RCE Fix ======= [](#rce-fix) This plugin mitigates the critical RCE vulnerability found in Craft CMS by automatically blocking any request that includes \_\_class in the request body. Designed for Craft CMS >= 3.9.4 and >= 4.4.15, it prevents malicious controllers from executing arbitrary code, offering an essential security layer until you can upgrade to the official fixed versions (3.9.15, 4.14.15, and 5.6.17). Requirements ------------ [](#requirements) This plugin requires Craft CMS 3, 4 or 5 and PHP 8.0 Installation with DDEV ---------------------- [](#installation-with-ddev) ``` ddev composer require fredmansky/craft-rce-fix && ddev craft plugin/install rce-fix ``` Installation with PHP --------------------- [](#installation-with-php) ``` composer require fredmansky/craft-rce-fix && php craft plugin/install rce-fix ``` ### Health Score 29 — LowBetter than 60% of packages Maintenance47 Moderate activity, may be stable Popularity16 Limited adoption so far Community7 Small or concentrated contributor base Maturity39 Early-stage or recently created project Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~0 days Total 3 Last Release 395d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/d0cb760a71086162ae116abfd01c9c0b6479049bf10fe5bcd958e9025e8c4567?d=identicon)[fredmansky](/maintainers/fredmansky) --- Top Contributors [![samuelreichor](https://avatars.githubusercontent.com/u/98765339?v=4)](https://github.com/samuelreichor "samuelreichor (9 commits)") ### Embed Badge ![Health badge](/badges/fredmansky-craft-rce-fix/health.svg) ``` [![Health](https://phpackages.com/badges/fredmansky-craft-rce-fix/health.svg)](https://phpackages.com/packages/fredmansky-craft-rce-fix) ``` ### Alternatives [craftpulse/craft-password-policy Password Policy plugin 2826.0k1](/packages/craftpulse-craft-password-policy)[enupal/backup Fully integrated Backup solution for Craft CMS 1612.5k1](/packages/enupal-backup)[born05/craft-csp Content Security Policy (or CSP) generator using nonces. 1110.2k](/packages/born05-craft-csp) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)