Tips and Tricks HQ Forum

Support Forum for Tips and Tricks HQ Products

Register or log in - lost password? (Having an issue with the forum login?)

Search the Forum

Tips and Tricks HQ Forum » WP eStore Forum » WP eStore General Questions

E-store Security Question

(3 posts) (3 voices)
  • Started 8 months ago by Ancade
  • Latest reply from admin
  • Possible Solutions (Related Topics):
    1. eStore has script that triggers security rule and causes blocked IP addresses
    2. eStore NextGen Gallery - Add to cart button doesn't show
    3. eMember eStore integration, subscriptions, memberships, recurring payments
    4. eStore - no customer record, no sales record, no add to Mailchimp after purchase

Tags:

  • buy now
  • estore
  • PayPal
  • security
  • spam

  1. Ancade
    Member

    When adding the buy now button with a shortcode, (I took your page at tipsandtricks as example) and you look at the html code, you see a lot of info, I believe even the paypal e-mail adress. For spammers this is a nice way to collect e-mail adresses. Having so much information in the html, I wonder how vulnerable e-store is. Also for fraudulant affiliates, can use this info. Is there any otherway to use the buynow button with less info, like the checkout cart paypal button? Hope you can reassure me about e-store security. Under is the html of a buynow button (taken from tipsandtricks):

    [admin deleted HTML code]

    Posted 8 months ago #

  2. wzp
    Moderator

    The email address you see is the primary PayPal account email address of the seller.

    * You should be using an email address dedicated soley for PayPal transactions. You can then filter out any other messages.

    * Because of the handshaking that goes on between the buyer, seller and PayPal; the anti-fraud measures take place between the buyer and PayPal; and between PayPal and the seller. There is no way to make a fraudulent purchase using the information in the exposed code.

    Posted 8 months ago #

  3. admin
    Key Master

    Lets just say we have been in this business for a very long time and we know what we are doing (there is nothing you can do with the information you see)

    With that said, you should be using the "Secure Merchant ID" instead of a plain PayPal email address if you are concerned. Simply enter your PayPal secure merchant ID in the following field:

    Paypal Email Address/Secure Merchant ID
    Posted 8 months ago #

RSS feed for this topic

Reply

You must log in to post.

Tips and Tricks HQ  | WP Shopping Cart  | WP Affiliate Software  | WordPress Membership Plugin