Feature Requests
Share ideas, discuss and vote on requests from other users in community
 
This object is in archive! 

disable built in ticket module

Russ Michaels shared this idea 6 years ago
Under Consideration

currently when a fraudulent order is made, WHMCS still activates the user, allowing them to login and attempt to hack your system with SQL injection etc.

This needs to be stopped. If the order is fraudulent then the account should not be made active.

An email should also be sent out tot he admin warning of a fraudulent order, so the account can be checked and deleted.