Community Support Forums

Re: paypal checkout manipulation

2011-10-18T08:09:00-05:00

Great, glad to be able to help.
Anything else you need just ask.

Statistics: Posted by Eduan — October 18th, 2011, 8:09 am

Re: paypal checkout manipulation

2011-10-18T07:58:32-05:00

Thanx for that hint, encryption works perfectly! should better be the default setting.

the only disadvantage is that shortcodes don't work it you like to sell something by external pages or in a multipress setup.

Statistics: Posted by workit — October 18th, 2011, 7:58 am

Re: paypal checkout manipulation

2011-10-18T07:34:47-05:00

You could try to have PayPal encrypt your buttons: WP Admin -> s2Member -> PayPal Options -> Account Details -> Enable Button Encryption.

Hope this helps.
P.S. Remember to report back.

Statistics: Posted by Eduan — October 18th, 2011, 7:34 am

paypal checkout manipulation

2011-10-18T06:55:51-05:00

hey guys,

i was testing s2member plugin and found the following problem:

1. generate a button code (for example: one time access, 20 dollar charge)
2. insert the shortcode on the website
3. when you now open the website and view the source code you will find the price for the product in the line

Code:

4. you can now manipulate the amount value to 1 or any other amount ...
5. press the button
6. paypal will open with the amount you entered
7. proceed and s2member will accept that payment .....

ok i guess nobody with a sane mind would do this with his paypal account ... but is there any possibility to deny payments with wrong amounts? the should be some counterechecks by s2member

Statistics: Posted by workit — October 18th, 2011, 6:55 am