CertiPro CSC

 The CertiPro Content Security Checker (CSC) extension for Magento is designed to protect your store’s CMS content by monitoring, validating, and optionally blocking changes to CMS blocks, CMS pages, and configuration fields. This extension helps merchants maintain secure and stable content, especially in environments where multiple administrators or automated systems may attempt to inject unwanted code or modify essential settings. By defining specific keywords—such as script tags or other sensitive patterns—merchants can ensure that unauthorized or unsafe content cannot be saved to the system.

This extension for Magento lets administrators configure the words or tags to monitor, enable automatic reversion of suspicious changes, and maintain clear visibility into the content-modification history. When a defined keyword is detected during a content update, the extension can prevent the change, preserve the original content, and log the event for review. This makes it especially useful for cases where tracking pixels, JavaScript snippets, or other functional scripts must be added temporarily—allowing admins to disable protection for a single update and re-enable it afterward. With additional email alerts and detailed logging, merchants stay fully informed about valid and invalid content changes occurring throughout their site.

 

Features

• Enable or disable the Content Security Checker module at any time
   
• Define one or more keywords (comma-separated) to monitor in CMS and configuration content
   
• Automatically revert changes when protected keywords are detected
   
• Allow updates even with keyword matches by disabling the related entity temporarily
   
• Send email notifications for both valid and invalid content changes
   
• Configure separate email recipients for valid and invalid change alerts (semicolon-separated)
   
• View all logged content changes from the dedicated Content Logs page
   
• Review detailed change comparisons on the Content Log Detail page
   
• Protect CMS blocks, CMS pages, and configuration values from unsafe or unapproved content