Support » Plugin: Pinpoint Booking System - #1 WordPress Booking Plugin » Very versitile but unfinished and disorganized support

  • I’ve been an independent PHP developer for some 20 years and I’m impressed with the versatility of this plugin however I’m concerned that this is no longer progressing forwards or under active development.
    It appears to me that the current support team have two main responses:
    1: That’s not possible
    2: Post this question somewhere else.

    I’ve had a look through the code of this plugin very closely and to achieve the “not possible” requests would often be very simple. Where the support have offered a PHP code solution it’s been some of the most horrific code imaginable.
    An example: SELECT * FROM ‘.$DOPBSP->tables->reservations.’ WHERE id=’.$_GET[‘reservation_id’]

    Which could be exploited by any novice hacker to expose critical information in 2 seconds.
    domain.com/path/to/file.php?reservation_id=1 UNION ALL SELECT * FROM wp_woocommerce_api_keys/*

    So are there any real developers working on this plugin?
    I’m sure it’s bringing in an income with 10,876 sales from Envato before they started selling it only from their own website. That’s over half a million bucks.

    They should either sort out their development team and their support team or withdraw this plugin from sale.

    • This topic was modified 3 years, 4 months ago by andyg2. Reason: added link
Viewing 1 replies (of 1 total)
  • Plugin Author DOTonPAPER

    (@dotonpaper)

    Hello,

    Thank you for your support and feedback.
    The code you mentioned is an example not an API.
    The Support Team will revise the topic.

    Have a wonderful day.

Viewing 1 replies (of 1 total)
  • The topic ‘Very versitile but unfinished and disorganized support’ is closed to new replies.