wherring
Forum Replies Created
-
Forum: Reviews
In reply to: [Accept Stripe Payments] Open to fraudI’d probably argue that the Invisible Recaptcha feature should be removed or at least come with a prominent warning in the user interface. I wouldn’t have used it if I had been aware of the issue.
While I appreciate the Recaptcha issue can likely be mitigated that doesn’t address the issue of the varied amounts and currency, that sounds like a flaw in the plugin.
We also experienced the same issue today. Hundreds of transactions, most declined but some have gone through which I’ve now refunded. The transactions were definitely processed via the plugin as I received an email notification for each failed transaction coming from the WordPress plugin.
As reported by @omolano, somehow they were able to vary the payment amount and currency for each transaction (we use AUD, these transactions were all in USD).
I’ve disabled the plugin and revoked the Stripe API keys as our particular application is no longer being promoted so it’s not worth my while to fix it.
For the record we were using the latest version of the plugin and Google’s invisible Recaptcha was enabled.
Forum: Plugins
In reply to: [WPFront Notification Bar] Content not showing side by sidePerfect! That fixed it, appreciate your help.
Didn’t get an explanation as to why but they suggested just reinstalling it from the repository version.
I have an open ticket with Siteground on this. The initial response is the file hasn’t been recently modified and they couldn’t see any security issues with it. I have a suspicion a different version has been uploaded to the WordPress repository and is causing the warning but I’m waiting for a response on that.