23 {{ upvoteCount | shortNum }}
23 {{ upvoteCount | shortNum }}

Customers changing price through PayPal?

by lucille123
19 replies
Hi Gang,

I've noticed a very strange phenomenon lately. I received 2 separate PayPal payments for 2 of my products over the past couple days. However, the payments I received were $.01 and $.05 for a $97 and $127 product! The PayPal receipt contained the product name, but with these adjusted prices.

It appears that these customers figured out a way to change the price through PayPal. The rest of the payments I received have been normal.

Has this ever happened to anybody else?? Any idea how I can prevent this in the future? (I use 1ShoppingCart, FYI.)

Thanks!
#changing #customers #paypal #price
  • Profile picture of the author lotsofsnow
    That is awful. Now I understand why Papal suggests to use the encrypted buy-now-button links.
    Signature

    Call Center Fuel - High Volume Data
    Delivering the highest quality leads in virtually all consumer verticals.

    {{ DiscussionBoard.errors[3898114].message }}
  • Profile picture of the author Linda_C
    Originally Posted by lucille123 View Post

    (I use 1ShoppingCart, FYI.)
    I'd suggest opening a ticket at 1SC and asking them if they've seen this happen before. They have a lot of merchants and might be able to shed some light on how/why it happened.
    {{ DiscussionBoard.errors[3898146].message }}
  • Profile picture of the author Karan Goel
    You might be using the standard PayPal code something like this:

    <form action="https://www.paypal.com/cgi-bin/webscr" method="post"> <!-- Identify your business so that you can collect the payments. --> <input type="hidden" name="business" value="herschelgomez@xyzzyu.com"> <!-- Specify a Buy Now button. --> <input type="hidden" name="cmd" value="_xclick"> <!-- Specify details about the item that buyers will purchase. --> <input type="hidden" name="item_name" value="Hot Sauce-12 oz. Bottle"> <input type="hidden" name="amount" value="5.95"> <input type="hidden" name="currency_code" value="USD"> <!-- Display the payment button. --> <input type="image" name="submit" border="0" src="https://www.paypal.com/en_US/i/btn/btn_buynow_LG.gif" alt="PayPal - The safer, easier way to pay online"> <img alt="" border="0" width="1" height="1" src="https://www.paypal.com/en_US/i/scr/pixel.gif" > </form>
    The blue colored text should give you some hint.

    Instead, use the email payment link.

    Karan
    Signature
    Penalty Safe, Long Term, 100% Whitehat Backlinks
    Love your site? Then check out SafeSpokes!
    ~_~_~_~_~_~_~_~_~_~_~_~_~_~_~_~_~_~_~_
    karan996@irchiver.com karan997@irchiver.com
    {{ DiscussionBoard.errors[3898155].message }}
  • Profile picture of the author misterkailo
    Wow.. that is a big lesson learned!!
    Signature
    Limited Spots Left... How to Generate 150+ Leads Daily And Earn $3000-6000 Per Sale Without Talking To Anyone
    {{ DiscussionBoard.errors[3898177].message }}
  • Profile picture of the author Natausha
    Oh wow! I'm so glad I logged on and caught this post tonight! It never even occurred to me that someone could change the code, but now that I think about it...wow...
    Signature
    Ladies! Join us in the ladies only IM Mastermind Group!
    {{ DiscussionBoard.errors[3898192].message }}
  • Profile picture of the author J Bold
    Wow, I didn't know this could be done.

    That really sucks for you, hope you can get it sorted out on how to stop it.
    Signature
    {{ DiscussionBoard.errors[3898272].message }}
  • Profile picture of the author Bradley J Anderson
    Wait a minute, I'm a little lost here... How could someone change the price client side?

    [EDIT] Never mind. It just dawned on me. I can't believe I never thought of that before. Probably best not to discuss methods in the open, anyway.

    Looks like I need to get busy changing some links.
    Signature
    BRADLEY ANDERSON - Tips, reviews & resources to make your online business more profitable.
    {{ DiscussionBoard.errors[3898275].message }}
    • Profile picture of the author Linda_C
      Originally Posted by Bradley J Anderson View Post

      Wait a minute, I'm a little lost here... How could someone change the price client side?

      [EDIT] Never mind. It just dawned on me. I can't believe I never thought of that before. Probably best not to discuss methods in the open, anyway.
      Yes, some things shouldn't be discussed in the open, so thanks for that!!
      (seriously, the things some people post in the open blow my mind)

      With paypal, it's not difficult to figure out. But this is 1SC, not direct paypal buttons/links. I'd be interested in what 1SC has to say about it.
      {{ DiscussionBoard.errors[3898283].message }}
      • Profile picture of the author J Bold
        Originally Posted by Linda_C View Post

        Yes, some things shouldn't be discussed in the open, so thanks for that!!
        (seriously, the things some people post in the open blow my mind)

        With paypal, it's not difficult to figure out. But this is 1SC, not direct paypal buttons/links. I'd be interested in what 1SC has to say about it.
        Perhaps it's the same kind of exploit?
        Signature
        {{ DiscussionBoard.errors[3898288].message }}
        • Profile picture of the author Linda_C
          Originally Posted by redicelander View Post

          Perhaps it's the same kind of exploit?
          Nope. Different coding systems. Unencrypted paypal buttons are easy to change. That's why they brought in the encryption. 1SC link code functions differently and doesn't have the price in the code.

          EDIT TO ADD: That's not to say someone hasn't hacked 1SC code, but just saying that 1SC doesn't display the price in the code like unencrypted paypal buttons.
          {{ DiscussionBoard.errors[3898305].message }}
  • Profile picture of the author J Bold
    Well that certainly seems odd. They had to hack in to it, somehow.

    Yeah, just would have to wait for 1SC to respond.

    I think Karan's posts were helpful but probably on applicable, here.
    Signature
    {{ DiscussionBoard.errors[3898326].message }}
  • Profile picture of the author RickDayle
    Originally Posted by lucille123 View Post

    Hi Gang,

    I've noticed a very strange phenomenon lately. I received 2 separate PayPal payments for 2 of my products over the past couple days. However, the payments I received were $.01 and $.05 for a $97 and $127 product! The PayPal receipt contained the product name, but with these adjusted prices.

    It appears that these customers figured out a way to change the price through PayPal. The rest of the payments I received have been normal.

    Has this ever happened to anybody else?? Any idea how I can prevent this in the future? (I use 1ShoppingCart, FYI.)

    Thanks!
    I'm willing to bet you are using the PayPal "shopping Cart" for your sales. Making a change to get any price you want is a really trivial process that anyone can do in only a few moments. If you are doing OTO or other subsequent add-in sales on the way to the final payment, you may want to look into a real shopping cart system.

    If you are going to use PayPal, use the hosted link (single price, not the shopping cart), which can't easily be modified by the "customer"

    I can explain exactly how the PayPal shopping cart was compromised if you PM me. Even though it is a really simple process, I'd prefer not to reveal it to everyone in a public forum like this. Once you know how it is done, you will see the need to use another method.
    {{ DiscussionBoard.errors[3898482].message }}
  • Profile picture of the author lucille123
    Thanks for the feedback everybody. I use 1SC links, not PayPal buttons. But the odd thing is that I only see these transactions in PayPal - they are not showing up in my 1SC account. However, the PayPal transactions have the same product descriptions I use in 1SC, so there must be some connection.

    I will contact 1SC and PayPal and see if they have ideas. This is blowing my mind!!
    {{ DiscussionBoard.errors[3898677].message }}
  • Profile picture of the author eflo
    I smell a WSO for this coming out
    {{ DiscussionBoard.errors[3898697].message }}
  • Profile picture of the author pmbrent
    You should definetely create all of your buy buttons through paypal itself. In the case something like this happens they have the "know how" on how to solve the problem or get your money back.
    {{ DiscussionBoard.errors[3900426].message }}

Trending Topics