Open
Bug 1166895
Opened 9 years ago
Updated 2 years ago
Don't store credit card information in fields using the related @autocomplete values
Categories
(Toolkit :: Form Manager, enhancement)
Toolkit
Form Manager
Tracking
()
NEW
People
(Reporter: MattN, Unassigned)
References
Details
We already try to avoid storing credit cards using the Luhn Algorithm. We can also use the autocomplete attribute value to do the same.
It may be worse: at https://esuite.ci.reynoldsburg.oh.us/eSuite.Utilities/Default.aspx?ReturnUrl=%2FeSuite.Utilities%2FPayment%2F Autocomplete showed both the credit card number and >the CCV<. [For obvious reasons, I don't want to include a screenshot.]
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•