Welcome, Guest ( Customer Panel | Login )




 All Forums
 VPCart Forum
 VP-ASP 7.0 Questions
 Possible Security Issue with Cookies Enabled
 New Topic  Reply to Topic
 Printer Friendly
Author Previous Topic Topic Next Topic  

danieltnbaker
Starting Member

United Kingdom
2 Posts

Posted - March 21 2011 :  10:34:58  Show Profile  Visit danieltnbaker's Homepage  Reply with Quote
With VP-ASP 7.0 I noticed when cookies are enabled if a user is in a public place, some person can then access their account change all details within My Account, Purchase products using the registered credit card, review existing orders etc without any login confirmation.

Is there an add-on for this at all or some setting within the configuration I have missed?

D


A hunch is creativity trying to tell you something.

support
Administrator

4679 Posts

Posted - March 21 2011 :  22:22:27  Show Profile  Visit support's Homepage  Reply with Quote
Hi Daniel,

We do not actually store any credit card information so it cannot actually be retrieved from the customers record in the database.

When a customer logs in from a public place they are asked do they want to save the cookie of the login.

If they click yes on a public computer then they are asking for trouble unfortunately.

You can see a similar thing on Facebook and MSN for example.

If you are concerned your customers may be making this mistake you can switch oft he cookie login feature.

Thank you.

Cam Flanigan
VP-ASP Cart Support

Follow us on Twitter:
http://www.twitter.com/vpasp
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Reply to Topic
 Printer Friendly
Jump To:
Snitz Forums 2000
0 Item(s)
$0.00