Post by 1JoJo2 » Wed Jul 11, 2018 10:20 am

TrustWave is failing my scan vulnerability test because I have a 'test credit card'. Where in the website site would this be located and can I delete?
OCART VERSION 2.0.1.1

New member

Posts

Joined
Wed Jun 10, 2015 5:17 am

Post by 1JoJo2 » Wed Jul 11, 2018 10:22 am

correction:
Ocart version 2.1.0.2

New member

Posts

Joined
Wed Jun 10, 2015 5:17 am

Post by ADD Creative » Thu Jul 12, 2018 5:39 pm

I think you would be best asking TrustWave what they mean by 'test credit card' and where they detected it.

www.add-creative.co.uk


Active Member

Posts

Joined
Sat Jan 14, 2012 1:02 am
Location - United Kingdom

Post by 1JoJo2 » Thu Jul 12, 2018 11:36 pm

Trustwave says they should not be able to detect any credit card at all. My website host believes that the test credit card detected is in Ocart. Trustwave has no support available so I need to figure this out on my own. Any idea where Ocart would keep a credit card number test or otherwise?

New member

Posts

Joined
Wed Jun 10, 2015 5:17 am

Post by ADD Creative » Fri Jul 13, 2018 6:00 pm

No credit card numbers are stored in OpenCart. The only exception is maybe a third-party payment module and even then the data should be encrypted with proper access controls. Which payment module are you using?

www.add-creative.co.uk


Active Member

Posts

Joined
Sat Jan 14, 2012 1:02 am
Location - United Kingdom

Post by 1JoJo2 » Fri Jul 13, 2018 10:27 pm

PsiGate payment module is what I am using by Schoginni. I contacted him already but have not heard back. I just checked the code for the module and there was nothing there. I know Psigate uses a test card but how this would be attached to the Ocart site is a mystery.
Thanks in advance for any ideas or advice.

New member

Posts

Joined
Wed Jun 10, 2015 5:17 am
Who is online

Users browsing this forum: No registered users and 8 guests