Support » Plugin: WP Full Stripe Free » Terrible! Easy to manipulate price

  • The design of this plugin is absolutely atrocious. The price is stored clientside! The customer can go edit the html source code and change the payment price to anything they want and the plugin will accept it. The price is simply stored in a hidden input tag.

    In addition, it offers only very basic forms that have zero input validation. It’ll accept any plain text input the user throws at it.

    AVOID, garbage plugin.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Thanks for pointing that out, i will avoid this plugin

    Plugin Author Mammothology

    (@mammothology)

    Dear @arcooke,

    We’ve updated the plugin to v1.6.0 which fixes the issue related to storing sensitive form data on the client side.

    I understand that you have high expectations regarding form visuals and validation. This plugin has basic forms but it provides value to many people still.

    We’ll improve the UI in the coming releases.

    cheers,
    Csaba

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Terrible! Easy to manipulate price’ is closed to new replies.