CVE-2024-34102 Cosmic Sting Online Checker
Tags
security tool security online Magento 2 CVE-2034-34102 cve CosmicSting Cosmic Sting checker

Check whether your Magento store is affected by CVE-2024-34102(a.k.a Cosmic Sting) within 20 seconds. Alternatively, you can check if the applied patch works. Simply input your store's Base URL.

CVE-2024-34102's CVSS Score: 9.8 CRITICAL

Tips

  • Base URL of your store is at Admin Panel > Stores > Configuration > General > Web > Base URLs (Secure) > Secure Base URL.
  • Only check the websites owned by you or you are authorized by the store owner to perform the check.
  • Your website must be public accessible.
  • Possible result: PASS!, FAIL!, Other notice.
  • Only supports https protocol for security consideration(So the Base URL must start with https).
  • If your website has Basic Authentication enabled, typically a staging environment, there is way to check without disabling the Basic Authentication. Please contact us.
  • Don't hesitate to contact us if you have doubts on the result or have a special Base URL or have other difficulties with checking your website.



Valid Base URL

  • ✓ https://www.example.com/
  • ✓ https://www.example.com
        Tailing slash is optional
  • ✓ https://www.example.com/some/path
  • ✓ https://www.example.com/some/path/
  • ✗ https://www.example.com/some-product.html
  • ✗ http://www.example.com
        http protocol is not supported, use https instead
  • ✗ https://www.example.com:3443
        Specifying port is not allowed
  • ✗ https://username:password@www.example.com
        userinfo is not allowed
        But there is another way if your website has Basic Authentication

Patch

wubinworks/module-cosmic-sting-patch

Share This Tool

If you found this tool useful, please share it!