The design of this plugin is absolutely atrocious. The price is stored clientside! The customer can go edit the html source code and change the payment price to anything they want and the plugin will accept it. The price is simply stored in a hidden input tag.
In addition, it offers only very basic forms that have zero input validation. It’ll accept any plain text input the user throws at it.
AVOID, garbage plugin.
- The topic ‘Terrible! Easy to manipulate price’ is closed to new replies.