PHPackages magedin/module-trojan-request-blocker - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Security](/categories/security) 4. / 5. magedin/module-trojan-request-blocker ActiveMagento2-module[Security](/categories/security) magedin/module-trojan-request-blocker ===================================== This robust extension acts as a shield, detecting and blocking malicious requests before they can disrupt your e-commerce operations. Whether it’s bots, fraudulent actions, or unusual traffic spikes, MagedIn\_TrojanRequestBlocker is designed to guard your store from potentially harmful activity. 1.0.2(1y ago)55603MITPHPPHP ^7.4||^8.0CI passing Since Aug 15Pushed 9mo ago1 watchersCompare [ Source](https://github.com/magedin/magento2-module-trojan-request-blocker)[ Packagist](https://packagist.org/packages/magedin/module-trojan-request-blocker)[ RSS](/packages/magedin-module-trojan-request-blocker/feed)WikiDiscussions master Synced 1mo ago READMEChangelog (3)Dependencies (1)Versions (4)Used By (0) MagedIn\_TrojanRequestBlocker Extension for Magento 2 ===================================================== [](#magedin_trojanrequestblocker-extension-for-magento-2) Keep your Magento 2 store protected from suspicious and harmful requests with MagedIn\_TrojanRequestBlocker. This robust extension acts as a shield, detecting and blocking malicious requests before they can disrupt your e-commerce operations. Whether it’s bots, fraudulent actions, or unusual traffic spikes, MagedIn\_TrojanRequestBlocker is designed to guard your store from potentially harmful activity, ensuring a secure and smooth shopping experience for legitimate users. [![Magento 2 Coding Standard](https://github.com/magedin/magento2-module-trojan-request-blocker/actions/workflows/coding-standard.yml/badge.svg)](https://github.com/magedin/magento2-module-trojan-request-blocker/actions/workflows/coding-standard.yml) Compatibility ------------- [](#compatibility) - Magento 2.3 - Magento 2.4 Context ------- [](#context) Have you ever seen any order like the following one in your Magento 2 website? [![alt text](https://github.com/magedin/magento2-module-trojan-request-blocker/raw/master/.github/assets/images/trojan_orders_in_magento2.jpg?raw=true)](https://github.com/magedin/magento2-module-trojan-request-blocker/blob/master/.github/assets/images/trojan_orders_in_magento2.jpg?raw=true) In the fast-paced world of eCommerce, security is paramount. Recently some Magento 2 websites encountered a serious security threat. Their Magento stores were targeted by trojan orders attempting to exploit vulnerabilities within Magento’s system. The attackers tried to inject malicious code through customer fields, such as the First Name and Last Name fields, with the aim of executing code when rendering the page. Installation ------------ [](#installation) ``` > composer require magedin/module-trojan-request-blocker > php bin/magento module:enable MagedIn_TrojanRequestBlocker > php bin/magento setup:upgrade > php bin/magento setup:di:compile ``` How to Use This Extension ------------------------- [](#how-to-use-this-extension) To get a full explanation of what's the problem here, please refer to this blog post: [Protecting Your Magento Store from Trojan Orders: Introducing the Trojan Request Blocker](https://wp.me/p8DGlE-2k5) There you'll have a video explaining how it works and how you can use it. Further Reading --------------- [](#further-reading) - [Adobe Commerce merchants to be hit with TrojanOrders this season](https://sansec.io/research/trojanorder-magento) - [Magento stores targeted in massive surge of TrojanOrders attacks](https://www.bleepingcomputer.com/news/security/magento-stores-targeted-in-massive-surge-of-trojanorders-attacks/) - [Surge in TrojanOrders Attacks on Magento 2 E-commerce Sites](https://cyberfraudcentre.com/surge-in-trojanorders-attacks-on-magento-2-e-commerce-sites) - [Magento 2: Fake customer order came through with weird code instead of customer name](https://magento.stackexchange.com/questions/358839/magento-2-fake-customer-order-came-through-with-weird-code-instead-of-customer) - [Despite "Allow Guest Checkout" set to "No" it's possible to place a guest order with the guest-carts REST API #36691](https://github.com/magento/magento2/issues/36691) [ ![MagedIn Technology](https://raw.githubusercontent.com/magedin/assets/c0cd4f15cee6580c6c96848400cf089e91417529/images/logo/magedin_horizontal.svg?raw=true "MagedIn Technology") ](https://github.com/magedin/magento2-module-trojan-request-blocker) ### Health Score 35 — LowBetter than 79% of packages Maintenance51 Moderate activity, may be stable Popularity23 Limited adoption so far Community9 Small or concentrated contributor base Maturity46 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~56 days Total 3 Last Release 520d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/8e44bd4b4b077a04791cb2298a5faa8f376db4b51977b3750d5348670a0b3457?d=identicon)[tiagosampaio](/maintainers/tiagosampaio) --- Top Contributors [![tiagosampaio](https://avatars.githubusercontent.com/u/1485260?v=4)](https://github.com/tiagosampaio "tiagosampaio (10 commits)") --- Tags magento2magento2-extensionmagento2-extension-freemagento2-moduleopen-sourcesecuritytrojan ### Embed Badge ![Health badge](/badges/magedin-module-trojan-request-blocker/health.svg) ``` [![Health](https://phpackages.com/badges/magedin-module-trojan-request-blocker/health.svg)](https://phpackages.com/packages/magedin-module-trojan-request-blocker) ``` ### Alternatives [veriteworks/cookiefix Magento2 extension for Cookie SameSite attribute. 65455.3k1](/packages/veriteworks-cookiefix)[imi/magento2-friendly-captcha Friendly Captcha integration for Magento2 18116.2k](/packages/imi-magento2-friendly-captcha)[basecom/magento2-csp-split-header Magento 2 module to split oversized CSP headers into multiple headers. 5256.6k](/packages/basecom-magento2-csp-split-header)[pixelopen/magento-cloudflare-turnstile Protect your store from spam messages and spam user accounts with Cloudflare Turnstile 5325.4k1](/packages/pixelopen-magento-cloudflare-turnstile)[yireo/magento2-csp-whitelist-inline-js Magento module to automatically add inline JS script to CSP whitelist 2974.7k](/packages/yireo-magento2-csp-whitelist-inline-js)[sansec/magento2-module-shield 14111.8k](/packages/sansec-magento2-module-shield) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)