Lourette books 0 Posted September 4, 2018 I think it is way too easy for an existing user to change his/her banking details on your website. There should be some way perhaps via sms or email to just make sure it is the user himself that is doing the banking detail update. Just to improve the security. Share this post Link to post Share on other sites