ShaggyDog Posted May 31, 2009 Share Posted May 31, 2009 I have just installed this contrib and it seems to be working at checkout. When the order appears in Admin, no CVV number, credit card name or expiry date is shown (or stored). The button to delete the CVV number works (even though there are no numbers stored). I tried this solution from the Contribution page - +++++register globals off gerard 1 Feb 2007 I had problems with the cvv not being stored in the database, it was because I had a regiter globals off patch. to get round this find in includes/classes/order.php you will need to add around line 30 under link_post_variable('ccexpires'); link_post_variable('cvvnumber'); that did the trick for me. file attached is blank+++++++ :angry: I can't find the code "link_post_variable('ccexpires');" anywhere.... Can anyone offer some help please? Quote Link to comment Share on other sites More sharing options...
♥toyicebear Posted May 31, 2009 Share Posted May 31, 2009 You are not allowed to collect and store CVV numbers at all. You not only stand to loose your merchant account, but risk being blacklisted from getting a new merchant account aswell as fines up to 500.000 USD. Quote Basics for osC 2.2 Design - Basics for Design V2.3+ - Seo & Sef Url's - Meta Tags for Your osC Shop - Steps to prevent Fraud... - MS3 and Team News... - SEO, Meta Tags, SEF Urls and osCommerce - Commercial Support Inquiries - OSC 2.3+ How To To see what more i can do for you check out my profile [click here] Link to comment Share on other sites More sharing options...
ShaggyDog Posted May 31, 2009 Author Share Posted May 31, 2009 Thanks but that wasn't what I asked. If you could help with the solution that would be really good. This is a UK business and PCIDSS compliance is voluntary. Quote Link to comment Share on other sites More sharing options...
♥toyicebear Posted June 1, 2009 Share Posted June 1, 2009 (edited) Thanks but that wasn't what I asked. If you could help with the solution that would be really good. This is a UK business and PCIDSS compliance is voluntary. PCI Compliance is related to cc info like cc numbers , expiration date, name etc. Storing CVV is not related to PCI Compliance or country. Storing CVV is not alowed periode. (Not for any country, whether you are PCI Compliant or not does not mather in regards to CVV ... You are not allowed to store the CVV code at all) Edited June 1, 2009 by toyicebear Quote Basics for osC 2.2 Design - Basics for Design V2.3+ - Seo & Sef Url's - Meta Tags for Your osC Shop - Steps to prevent Fraud... - MS3 and Team News... - SEO, Meta Tags, SEF Urls and osCommerce - Commercial Support Inquiries - OSC 2.3+ How To To see what more i can do for you check out my profile [click here] Link to comment Share on other sites More sharing options...
ShaggyDog Posted June 1, 2009 Author Share Posted June 1, 2009 Yet again off topic. If you can't answer my query please don't post. My client has asked for this to be done so I'm doing it. I need help with the OSC side of things not advice on storing data. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.