Submit Link Subscribe

Home
» Tags
» Patch

Patch

Applying patches in Magento — security patches, bug fix patches via Composer patches, and the cweagans patching workflow.

PolyshellPatch

Mitigates the PolyShell vulnerability (APSB25-94) — an unrestricted file upload in the Magento REST API that allows attackers to upload executable files via cart item custom option file uploads.

https://github.com/markshust/magento-polyshell-patch

12

62

#Security #Vulnerability #Patch #Polyshell

24 Mar 2026
How to efficiently patch Magento 2 deployments at scale

Deploying patches is simple for in-house development teams or smaller Agencies maintaining only a few stores. Manually applying patches per project is simple, but doesn’t scale well. Both from time cost and security exposure perspectives.

https://www.sdj.pw/posts/magento2-patching/

#Patch #Security #Deployment

11 Nov 2025
Check if your Magento site is safe from Session Reaper

How to guide on checking if your Magento 2 store is safe from the Session Reaper (CVE-2025-54236) exploit. And guidance on how to patch and secure your site if it is not.

https://www.sdj.pw/posts/magento2-session-reaper-cve-2025-54236/

#Security #Vulnerability #Patch #Session Reaper

11 Nov 2025
Redis Session Management Patch

When using Redis as session storage in Magento 2, simultaneous or closely spaced requests to the same session can end up queued due to the locking system that prevents concurrent writes.

https://github.com/olivertar/m2_redis_patch

4

38

#Redis #Patch #Session

02 Sep 2025

Got a link to share?