Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Running an eCommerce site developed using MVC architecture with C# and SQL db.
We have a generic message displayed to users if they entered a wrong billing address or wrong credit card information – “Unable to process the order. Please check billing and credit details and try again”.
Is it possible to display the actual mistake. For example: “Unrecognized CVV number” or “The name entered does not match the credit card information entered”.
If possible what does it take to implement this?
Do not do this. This is a severe security hole which allows people to attempt to use stolen information and guess pieces they aren’t aware of, the CVV number is only 3 numbers, if you tell them that’s the incorrect piece then they can easily guess to get it right.
Tell them exactly what you have right now, that is the secure way to do this, to ensure people are not using your e-commerce system for theft.