My first thoughts are to SSL the entire site due to the nature of the project.
There are also things you can do to forms to make them safer, when recently reading the Stripe payment gateway documentation they suggest not adding a name
attribute to the fields in the form until the final second with some javascript.
SSL and no mixed content loading (which is making sure every asset is loaded over SSL too) should be sufficient though.
Related Posts:
- How to get current url in contact form 7
- Is wp_nonce_field vulnerable if you know the action name?
- Sending form data via PHPMailer – How to action PHP script from a form
- Nonce actions and names available via open source
- Contact forms going into spam folder
- Add contact form
- not logged in users can’t submit form
- Creating a contact form with Laravel frontend
- Can you disable the mail function in contact form 7 [closed]
- Make a form that will send email to all the authors in selected category [closed]
- Should I use wp_nonce_field on my contact form?
- advanced custom fields and contact form 7
- form action wordpress and php
- WordPress Emails & Contact Forms [closed]
- How to stop direct HTTP POST to a PHP script?
- Email from my theme’s contact form doesn’t get the reply-to address right
- Dashboard Contact Form
- How can I receive uploaded attach file as a Google drive link [closed]
- Email form getting hacked
- WordPress – Users with contact form on profile
- Why is my contact form not working?
- Passing form data on submit
- Contact form spam, without form?
- Custom Contact Form Not Sending (but not giving error)
- How to add contact form instead of checkout
- Free or affordable OCR and ICR (handwriting recognition) SDK?
- What characters are allowed in an email address?
- What is an easy way to display a front-end user registration form?
- Stop wordpress automatically escaping $_POST data
- Best way to create multi-step form with data saved to user account for later updating?
- Custom Registration Template/Page
- need to add attach thumbnail from my form
- Checkbox won’t check when label is clicked
- When is it useful to use wp_verify_nonce
- Obfuscating Email Addresses in Form Fields
- Performing a POST action on homepage goes to posts page
- How do I embed a Javascript form directly into a page?
- 404 on form submit [duplicate]
- Form Processing
- Saving checkbox/option list status?
- How can I add a link to a WPForms “contact us” form to the main menu?
- Customize reset password form redirect problem
- creating form for wp_remote_post
- How to know what submit button the user clicked?
- How to use TinyMCE in the quick edit form?
- How do I use the info submitted in a form to create a form reception page? (like “thank you {firstName}”) [closed]
- How to retrieve form data?
- contact form ajax empty response error message
- Adding a new user from the front end
- Embed interactive pdf
- Contact Form 7 not sending emails- no confirmation, no error [closed]
- Grab values from the query string to fill in hidden fields in ninja forms [closed]
- Make editor required for post from frontend
- Saving frontend form data in wordpress
- WordPress tabindex Order
- PHP form is not sending mail if I use mime type and version in header. How to solve this? [closed]
- Custom form in admin area, redirect in wrong page
- Validating custom fields before post save
- Is there a WordPress form plugin that can easily be configured for Google Analytics goals?
- How to code auto-retry for API call
- Saving contact form 7 data into custom Table
- How to check form input against PHP variable?
- How to validate my form
- how to insert textbox value in existing database table in wordpress?
- Is it possible to pass variables to WordPress externally?
- Front end post form validation
- Exporting a form to a CSV file does not work in WordPress but it does in PHP
- How to redirect with success message in wordpress admin panel?
- How to stop iFrame form from reloading on mobile?
- Am receiving more than thousand mails in single day from ‘[email protected]’ continuously
- I’m needing to figure out how to create a page that user could create a “task” and it be selectable on a form
- contact form and WP loop
- AMP and Paypal form CORS issue
- Timezone dropdown in form
- Unexpected token admin.php
- display a message if get form is empty
- Adding a different domain to existing WordPress site
- .html form added to a page
- Sending email via function in page or setting up the action properly in another page
- Multiple Taxonomy post query with exclusion
- Remove active cursor from form field
- import excel form into wordpress
- Custom forms + Polylang
- What is the proper way to embed the HTML of an external form such as payflowlink from paypal?
- Displaying errors on the front end from my plugin
- Assigning input to variable
- Custom form on front page redirects on error page
- IE 9 Clears Form Fields
- Form validation on user profile edit
- custom form submission
- How to get formidable entry ID by post ID? [closed]
- Calling custom PHP from a HTML form post action gives 404 error
- Reset form on onclick function
- How to add a checkbox with categories of entries to the form Contact Form 7 WordPress
- Conditional Logic for the Input Mask in Caldera Forms [closed]
- Form that stores emails [closed]
- Dynamic price for payment button
- Forms lead to “Page not found” in Ultimate Member plugin
- How to use tag in wordpress?
- How can I add email code authentication on form submission without any wp plugin?