Hi,
I have just had a customer raise security concerns over our Zen Cart web site. She noticed that the credit card info is stored by the browser. She was surprised to find that when placing a repeat order that her cc number automatically 'popped up' in the cc box on the order payments page.
I have confirmed that this does in fact happen (using FireFox). And the scary thing is that even if I log in as a different user, the same cc number pops up in the box (You have to type the first digit, then the drop down appears with the full cc number).
I will try and fix this myself, but would appreciate any comments or help.
Using Zen Cart 1.3.8a
Tony
Bookmarks