I am very very confused about encrypting form values when posting a form to submit payment.
Please don't turn off when I mention PayPal. I am genuinely confused.
I have to submit form values via an HTTPS connection to PayPal and PayPal have advised me to encrypt my form fields (This is where I'm confused).
From everything I've read I cannot encrypt the html <input type="hidden" name="total" value="10.00"/>
, so when someone clicks view source they can see the form values.
Can the form be hacked and the values be changed before the form is sent? <form action="https://paypaletcetc">
Please help me clear my head.....