Local Storage seems to be disabled in your browser.
For the best experience on our site, be sure to turn on Local Storage in your browser.
Tech
Magento 2 development technical information, tutorials and sample code.
-
March 09, 2025 55
Check whether your Magento store is affected by CVE-2024-34102(a.k.a Cosmic Sting) with only a few clicks. You can also use it to check whether the applied patch works. Simply input your store's Base URL...
-
February 10, 2025 32
Sometimes we need to "detect"(check) the customer's login status and do something. For instance, display a coupon code to logged in customers only. Things become complicated when Full Page Cache(incl...
-
January 23, 2025 33
Magento supports multiple payment methods and you can even develop your own payment method. This is a big plus as store owners can fully control the last and the most important step of checkout process...
-
December 31, 2024 42
As illustrated in the concept image, we got a request from our client that he wants to use the built-in Admin Grid filter feature to search entries that has empty field. To be more specific in his situation...
-
December 19, 2024 62
Class
\Magento\Framework\Xml\Security
in Magento 2 framework is intended to prevent XXE and itsscan
method can detect entities in XML input, by design. However, we found a way to bypass thescan
method... -
December 17, 2024 30
Magento 2 uses "Scoped configuration" to adopt multiple stores setup. Configuration value has a fallback mechanism and the "default value" is stored in
etc/config.xml
. In most cases, we just make use... -
September 12, 2024 155
How to fix CVE-2024-34102 -- a CVSS Score 9.8(Critical) and RCE possible vulnerability? Upgrade Magento to greater than 2.4.7-p1 is the best solution, but sometimes this could not be done in a few days...
-
September 10, 2024 162
CVE-2024-34102(Now it can be chained with another bug to RCE) was discovered in 2023 and its details were published in June 2024. There already exists verified exploit script on the internet. By exploiting...
-
August 30, 2024 62
If you debugged Magento, I believe you have ever seen the 'X-Magento-Tags' in the response headers. What is 'X-Magento-Tags' used for? How is the 'X-Magento-Tags' generated?
We will cover these questions...
-
August 29, 2024 22
Full Page Cache is one core feature that significantly boost the speed of your store. It comes default with Magento 2. When the Cache is hit, Magento can skip FrontController and return the response. So...