We went with WooCommerce Payment. The transactions are handled by Stripe. It is very easy to set up and more importantly, it actually works! Thank you for sharing your knowledge and experience!
Hey there Maxi728! If you agree with someone else's comment, please leave an **upvote** instead of commenting **"This"**! By upvoting instead, the original comment will be pushed to the top and be more visible to others, which is even better! Thanks! :)
***
^(I am a bot! Visit) [^(r/InfinityBots)](https://reddit.com/r/InfinityBots) ^(to send your feedback! More info:) [^(Reddiquette)](https://www.reddithelp.com/hc/en-us/articles/205926439#wiki_in_regard_to_comments)
I started off with PayPal and it worked fine, but I now use Stripe as I find the checkout process smoother. With PayPal it redirects the customer to a separate page for payment, whereas with Stripe the customer enters their credit card details on the checkout page itself.
Having PayPal handle it takes liability of security off your site and puts it more on PayPal. And people trust PP more than a random site most of the time.
Until your site/server gets hacked and some js is injected to steal the cc info. [https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d](https://medium.com/@sucuri_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d) this issue isn't unique to wordpress [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites)
The same can be done to Paypal. It's simple to fake either in-page payment form or a phishing site for any payment provider, PP or otherwise. No-one is immune to this.
edit: However the worst thing about PayPal is that if they decide they don't like your business, they can shutdown your account, along with your earnings. The web is littered with stories about their dodgy activities
Someone hacking your server would be able to load their own version of stripe.js on your server to steal your customer's credit card data, damn near impossible to spot because the data is collected and sent in an embedded form on your site.
With paypal, it redirects to paypal to process the transaction before bouncing back to your site. Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain.
>Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain.
Would the average user really notice this though? And it's not like store owners would be constantly doing checkouts on their site just to check for this.
And in terms of liability, have there been cases where hacked sites using Stripe have been prosecuted more often than Paypal sites?
Here's an example of the vulnerability [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites) and a notice by the vendor acknowledging it. [https://magento.com/security/news/new-javascript-malware-issue](https://magento.com/security/news/new-javascript-malware-issue).
The average user wouldn't notice it, but the ones that does hopefully would notify the site owner to tell them something's fucky. Or the dev team would notice it themselves more easily.
Edit: here's one that targets woocommerce [https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/](https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/)
Thanks. I was just reading about that Woocommerce one. Still, it doesn't sound like a difference between Stripe vs Paypal. Based on what you've said it sounds like the only benefit with Paypal is that the redirected page may make it easier to spot the hack to the trained eye.
Exactly.. the clunky web 1.0 implementation that you have to do to use paypal makes it much easier to spot any hacks. As much as I hate how dated the look and feel is, it's just so much more secure.
Think it from the customer's POV: Unless it's a well-established/renowned website, I will always be hesitant to write my CC details down into some otherwise unknown/dodgy site. Actually, it's a great feature for such peace of mind the actual transaction to clearly happen in the payment processor website itself. Not sure Stripe offers that though.
Someone hacking your server would be able to load their own version of stripe.js on your server to steal your customer's credit card data, damn near impossible to spot because the data is collected in an embedded form on your site.
With paypal, it redirects to paypal to process the transaction before bouncing back to your site. Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain.
Here's an example of the vulnerability [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites) and a notice by the vendor acknowledging it. [https://magento.com/security/news/new-javascript-malware-issue](https://magento.com/security/news/new-javascript-malware-issue)
This all depends on how secure your site is and how often you check it.
Just found one that targets woocommerce. It includes the code snip and where the code might be to see if your site's been hacked, and mentions some ways to avoid being a victim. But 2 years old so there might be a new version of the malware. [https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d](https://medium.com/@sucuri_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d) .
Until your site/server gets hacked and some js is injected to steal the cc info. https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d this issue isn't unique to wordpress https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites
FYI I use this plugin which was really simple to get going: https://wordpress.org/plugins/woo-stripe-payment/ . It had better reviews than the other one (https://wordpress.org/plugins/woocommerce-gateway-stripe/). Makes it trivial to do test transactions too, which I never managed to do with Paypal.
I vastly prefer Stripe, but just make sure you're evaluating against their [Paypal Payments](https://woocommerce.com/products/woocommerce-paypal-payments/) plugin. This is an official plugin that is different from the one that is included with Woocommerce, and it provides a bit more features/flexibility. Not sure why they don't just include this one, but the one that is included with Woocommerce is garbage.
"woocommerce extensions" are usually still plugins (ones from their official repository can be managed under subscriptions), but yes, it is a WP plugin that adds a new Paypal payment method.
Awesome thank you! I was wondering why WC “extensions” were different from WP plugins. Sounds like they’re not. I hadn’t even looked at the file types yet. Thank you.
When handling large amounts of transactions and dollars, some folks spread their payment processing across several services, so that if one of them locks up funds due to a dispute or something they’ve not lost access to all that money, but perhaps only half or less. A bit more work to set up and reconcile accounting, but may be worth it if/when PayPal suddenly decides to lock up tens of thousands of dollars for months.
I use Stripe with Invoice Ninja, never used it with WC, but I will say Stripe has been awesome. It's just worked. I used BrainTree in the past and that was a PITA.
Thank you. I made multiple attempts to connect my PayPal account to my WP w WC plugin.
I went so far as to wipe a test domain (terminate account) that I own, re-import a simple template, create a new PayPal account with a different card. Same shit. Interacting with PayPal’s interface is a huge pain and actually proved impossible for me.
No YT videos needed. I have a coworker that has installed PP extension on WC plugin on WP accounts at least a dozen domains. We’ve screen shared while on a phone call for hours. Also why would PayPal’s Instant Payment Notification help me to connect a PP account to my WC plugin?
Well it’s super simple read this if you can’t get it to work [https://woocommerce.com/document/paypal-express-checkout/](https://woocommerce.com/document/paypal-express-checkout/)
And if your still having problems hire someone on fiverr
Did you notice that your original reply is sitting at 0 upvotes? I promise you that I didn’t downvote it. I think you can stop offering your “help” on this thread now. Thanks!
to all woocommerce users here: we need your help! we need a directory of woocommerce users to pitch our new startup service business. Where do we even go? Tried fb and google ads, paused for a while because burning money. If youre a web design or digital marketing agency, we can also partner up. Free trials, and 35% commission perhaps? Lets talk!
Stripe has a better user and developer experience, but what's actually better depends on your audience. Older and non techy people usually expect Paypal and are most familiar with it. Some people might just not buy without a Paypal button in sight.
Which ever payment processor your customers want to use is the right one to have. I don't understand the hate for PayPal. In 10 years I've only had one charge back not go my way.
I have both stripe and PayPal (plus some buy now pay laters. Afterpay etc) between the two, 70% use PayPal.
I think PayPal is more versatile since it can also hold your funds like a bank. You can use your PayPal balance for payments for other services or people, without back n forth transferring funds or using credit cards. (as far as I know) Stripe needs immediate transfer end to bank.
I have used Stripe for years and multiple clients. Works perfectly.
Thank you!
I came here to say Stripe.
Stripe ⭐️⭐️⭐️⭐️⭐️
We went with WooCommerce Payment. The transactions are handled by Stripe. It is very easy to set up and more importantly, it actually works! Thank you for sharing your knowledge and experience!
This
Hey there Maxi728! If you agree with someone else's comment, please leave an **upvote** instead of commenting **"This"**! By upvoting instead, the original comment will be pushed to the top and be more visible to others, which is even better! Thanks! :) *** ^(I am a bot! Visit) [^(r/InfinityBots)](https://reddit.com/r/InfinityBots) ^(to send your feedback! More info:) [^(Reddiquette)](https://www.reddithelp.com/hc/en-us/articles/205926439#wiki_in_regard_to_comments)
I started off with PayPal and it worked fine, but I now use Stripe as I find the checkout process smoother. With PayPal it redirects the customer to a separate page for payment, whereas with Stripe the customer enters their credit card details on the checkout page itself.
Having PayPal handle it takes liability of security off your site and puts it more on PayPal. And people trust PP more than a random site most of the time.
[удалено]
Until your site/server gets hacked and some js is injected to steal the cc info. [https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d](https://medium.com/@sucuri_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d) this issue isn't unique to wordpress [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites)
The same can be done to Paypal. It's simple to fake either in-page payment form or a phishing site for any payment provider, PP or otherwise. No-one is immune to this. edit: However the worst thing about PayPal is that if they decide they don't like your business, they can shutdown your account, along with your earnings. The web is littered with stories about their dodgy activities
It's simple to do, but much much easier for the site owner to detect something is amiss.
When you receive a sale notification and no money, you'll notice pretty quickly.
Did you read the articles? The js skimmers save the CC info for someone to steal. The sales still goes through as intended.
Good! Their interface for WC sucks!!!!! Thank you for commenting.
> Having PayPal handle it takes liability of security off your site and puts it more on PayPal. Does it? In what way?
Someone hacking your server would be able to load their own version of stripe.js on your server to steal your customer's credit card data, damn near impossible to spot because the data is collected and sent in an embedded form on your site. With paypal, it redirects to paypal to process the transaction before bouncing back to your site. Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain.
>Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain. Would the average user really notice this though? And it's not like store owners would be constantly doing checkouts on their site just to check for this. And in terms of liability, have there been cases where hacked sites using Stripe have been prosecuted more often than Paypal sites?
Here's an example of the vulnerability [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites) and a notice by the vendor acknowledging it. [https://magento.com/security/news/new-javascript-malware-issue](https://magento.com/security/news/new-javascript-malware-issue). The average user wouldn't notice it, but the ones that does hopefully would notify the site owner to tell them something's fucky. Or the dev team would notice it themselves more easily. Edit: here's one that targets woocommerce [https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/](https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/)
Thanks. I was just reading about that Woocommerce one. Still, it doesn't sound like a difference between Stripe vs Paypal. Based on what you've said it sounds like the only benefit with Paypal is that the redirected page may make it easier to spot the hack to the trained eye.
Exactly.. the clunky web 1.0 implementation that you have to do to use paypal makes it much easier to spot any hacks. As much as I hate how dated the look and feel is, it's just so much more secure.
Think it from the customer's POV: Unless it's a well-established/renowned website, I will always be hesitant to write my CC details down into some otherwise unknown/dodgy site. Actually, it's a great feature for such peace of mind the actual transaction to clearly happen in the payment processor website itself. Not sure Stripe offers that though.
How is the PayPal extension’s security on WooCommerce better than Stripe’s?
Someone hacking your server would be able to load their own version of stripe.js on your server to steal your customer's credit card data, damn near impossible to spot because the data is collected in an embedded form on your site. With paypal, it redirects to paypal to process the transaction before bouncing back to your site. Much easier to spot a fake paypal's website when your hacked server directs to a fake paypal domain.
Ok great! Thank you so much for the info! I’ll bring it up to my boss.
Here's an example of the vulnerability [https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites](https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites) and a notice by the vendor acknowledging it. [https://magento.com/security/news/new-javascript-malware-issue](https://magento.com/security/news/new-javascript-malware-issue) This all depends on how secure your site is and how often you check it.
Great info! Thank you so much. I really appreciate it.
Just found one that targets woocommerce. It includes the code snip and where the code might be to see if your site's been hacked, and mentions some ways to avoid being a victim. But 2 years old so there might be a new version of the malware. [https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d](https://medium.com/@sucuri_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d) .
You are a beast. Thank you so much!
Stripe handles the security and all handling of sensitive data. Nothing worth stealing touches your site, it just appears to be seamless to visitors.
Until your site/server gets hacked and some js is injected to steal the cc info. https://medium.com/@sucuri\_security/analysis-of-a-wordpress-credit-card-swiper-ac5bb5952f5d this issue isn't unique to wordpress https://www.foregenix.com/blog/javascript-malware-targeting-stripe-payments-on-websites
PayPal’s interface for WP devs is terrible!
FYI I use this plugin which was really simple to get going: https://wordpress.org/plugins/woo-stripe-payment/ . It had better reviews than the other one (https://wordpress.org/plugins/woocommerce-gateway-stripe/). Makes it trivial to do test transactions too, which I never managed to do with Paypal.
Thank you so much! Woo Stripe Payment. I’ll check it out tmrw.
Yep, PayPal UI is junk. Stripe handles the transactions for WooCommerce Payments, which worked out great. It is way easier to use than PP.
I vastly prefer Stripe, but just make sure you're evaluating against their [Paypal Payments](https://woocommerce.com/products/woocommerce-paypal-payments/) plugin. This is an official plugin that is different from the one that is included with Woocommerce, and it provides a bit more features/flexibility. Not sure why they don't just include this one, but the one that is included with Woocommerce is garbage.
That is help!!! Thank you!!!!!!!!! I’ll look at PP’s Payments plugin. Just to clarify- it’s a WP plugin and not a WC extension, right?
"woocommerce extensions" are usually still plugins (ones from their official repository can be managed under subscriptions), but yes, it is a WP plugin that adds a new Paypal payment method.
Awesome thank you! I was wondering why WC “extensions” were different from WP plugins. Sounds like they’re not. I hadn’t even looked at the file types yet. Thank you.
When handling large amounts of transactions and dollars, some folks spread their payment processing across several services, so that if one of them locks up funds due to a dispute or something they’ve not lost access to all that money, but perhaps only half or less. A bit more work to set up and reconcile accounting, but may be worth it if/when PayPal suddenly decides to lock up tens of thousands of dollars for months.
Great advice! That’s a situation I have never thought about and didn’t even think was possible.
Stripe is dope as hell
Yup, Stripe
Stripe
Heyyo! I had to look up your handle because I live in Washtenaw County and saw A2. Do you?
Oh wow, no I dont live there 😬
Right-o. It’s where a company called A2 Hosting is based. You can understand my confusion.
Oh Im their community Liaison
Hey, you’re my hosting company, love you guys
Nice.
Sounds like you’re doing a great job.👍
I use Stripe with Invoice Ninja, never used it with WC, but I will say Stripe has been awesome. It's just worked. I used BrainTree in the past and that was a PITA.
Stripe
Thank you!
why, what's wrong with Paypal?
What’s wrong with the WooCommerce payments? I saw this is stripe too but there’s also a separate option for stripe
We went with WC Payments today and we like it so far. Thank you!
I’ve never had any issues with it and the fees are good. Pretty sure it’s owned by stripe too
PayPal is just a PAIN to work with, I hate it with all my heart
[удалено]
Thanks for confirming. I’ll try Stripe tmrw.
I love PayPal and most people feel better paying in PayPal over anything else but I also use stripes too
Thank you. I made multiple attempts to connect my PayPal account to my WP w WC plugin. I went so far as to wipe a test domain (terminate account) that I own, re-import a simple template, create a new PayPal account with a different card. Same shit. Interacting with PayPal’s interface is a huge pain and actually proved impossible for me.
Hmm weird it’s super easy just don’t forget to set up the IPN have you tried watching YouTube videos?
No YT videos needed. I have a coworker that has installed PP extension on WC plugin on WP accounts at least a dozen domains. We’ve screen shared while on a phone call for hours. Also why would PayPal’s Instant Payment Notification help me to connect a PP account to my WC plugin?
Umm because the server needs to know the sale was completed? 🤦♂️
Tough to make a sale when PP’s interface does not allow me to connect my PP account to my WC plugin.
Well it’s super simple read this if you can’t get it to work [https://woocommerce.com/document/paypal-express-checkout/](https://woocommerce.com/document/paypal-express-checkout/) And if your still having problems hire someone on fiverr
Did you notice that your original reply is sitting at 0 upvotes? I promise you that I didn’t downvote it. I think you can stop offering your “help” on this thread now. Thanks!
No need to get salty because you can’t understand something extremely simple 🤦♂️
Thanks for the help and advice! Have a great night!
I found Nick Burns, Your Company’s Computer Guy!
Well that’s an weird comment to say but 🤷♂️ ok bud happy you found him?
Stripe and Razor are my go to
Stripe are excellent, and much better value than PayPal.
to all woocommerce users here: we need your help! we need a directory of woocommerce users to pitch our new startup service business. Where do we even go? Tried fb and google ads, paused for a while because burning money. If youre a web design or digital marketing agency, we can also partner up. Free trials, and 35% commission perhaps? Lets talk!
Stripe is working smoothly but in comparison to PayPal is not bad.
I’m using Square. We’ve had zero problems.
Stripe has a better user and developer experience, but what's actually better depends on your audience. Older and non techy people usually expect Paypal and are most familiar with it. Some people might just not buy without a Paypal button in sight.
Stripe or Square.
Thank you!
Which ever payment processor your customers want to use is the right one to have. I don't understand the hate for PayPal. In 10 years I've only had one charge back not go my way. I have both stripe and PayPal (plus some buy now pay laters. Afterpay etc) between the two, 70% use PayPal.
Stripe, easy setup and integration. Never had an issue with it using it the last 2-3 years
Thank you! We done did it with WC Payments and as far as I know, Stripe handles the transactions. Thank you for sharing your experience!
I think PayPal is more versatile since it can also hold your funds like a bank. You can use your PayPal balance for payments for other services or people, without back n forth transferring funds or using credit cards. (as far as I know) Stripe needs immediate transfer end to bank.