Hello David,

I apologize for the inconvenience you’re experiencing.

Based on the symptoms you’ve described, this appears to be related to the PayPal webhook configuration.

Could you please remove the existing webhook from paypal and create a new one directly from your Joomla Admin panel?

Steps:

1. Go to Joomla Admin → Plugins → PayPal.
2. Click Create Webhook to generate a new webhook automatically.

Please also review our documentation, which outlines the required webhook events and the complete setup process, Sometimes user create issues when they create webhook and select events for this webhook.

https://www.joomshaper.com/documentation/easystore/paypal-integration-in-easystore#how-to-obtain-sandbox-merchant-webhook-id

After recreating the webhook, please test a new order and let us know the outcome.

We look forward to your update.

Thank you.

Its not working, I have told you I have many stores and have set this up many times before and memorized your documentation following every step possible.

1. I get to payment screen at paypal and pay with my paypal balance (separate account not the one for the site)
2. order says confirmed and no emails generated
3. unpaid order shows in orders
4. no payment or funds transferred and paypal has no history of transaction or new order.

When I follow your steps I get:

Same webhook url is already exists in your merchant account

I apologize for this.

I have tested this on multiple sites, including our live site and codebase, and I could not find any issues like this.

From our end, the order status is being updated to Paid correctly. However, in some cases, it may take a short moment (a few milliseconds or seconds) for the status to be updated.

Please check your webhook URL. It should be similar to the example below. The URL shown is from the sandbox environment, so you should see your live site URL instead.

Also, please try creating the webhook again from the EasyStore PayPal plugin. Before doing so, remove the existing webhook from your PayPal account and then recreate it through the plugin.

Thank you.

Your resolution did not work. Please let me share the information.

1. I deleted the LIVE webhook from paypal developer
2. Created a new LIVE webhook from the joomla paypal plugin successfully
3. Saw The WebHook
4. Hard Errors and pending errors and nothing working after looking at the logs

This is so frustrating, I don't know how else to troubleshoot this, you really need to setup some type of live support for your paying customers where I can share my screen with you.

Hello,

I need your help to investigate this further.

Please go to your PayPal Developer account → App Credentials → open your app, and share a screenshot of:

• Webhook configuration
• Event subscription settings

Make sure to include both Live and Sandbox modes if possible.

Also, please provide your hosting/server access details if available. In some cases, the server or firewall can block PayPal requests, which may prevent the webhook from being executed properly.

We’ll review everything from our side and help you identify the exact cause.

Thanks.

Hi,

I found the root cause of the issue.

Your server’s firewall/WAF is blocking PayPal’s webhook delivery requests with a 403 “Malware detected” response before PayPal can notify your site of completed payments. As a result, the payment is processed in PayPal, but the webhook notification never reaches your website.

To resolve this, you’ll need to whitelist PayPal’s webhook IP ranges in your firewall. Based on your server configuration, it appears you’re using Imunify360 (commonly found on cPanel servers).

Recommended steps:

1. Log in to cPanel → Imunify360 → Whitelist and add the following PayPal IP ranges:
   • 173.0.80.0/20
   • 173.0.96.0/20
   • 66.211.168.0/22
   • 64.4.240.0/21
   • 212.79.127.0/24
2. If you have WHM/CSF access, you can also whitelist the ranges from the command line:

csf -a 173.0.80.0/20 csf -a 173.0.96.0/20 csf -a 66.211.168.0/22 csf -a 64.4.240.0/21 csf -a 212.79.127.0/24

3. After the IPs have been whitelisted, log in to your PayPal dashboard and resend the failed webhook: WH-16881484TX420643C-8CA98894EW886622H This should re-deliver the notification for the missed $74.49 payment.

If you do not have access to the firewall or WAF settings, please forward this information to your hosting provider and ask them to whitelist PayPal’s webhook IP ranges. They should be able to make the change quickly.

Please note that the order may currently appear as unpaid on your website because the webhook was never received. I also recommend verifying within your PayPal account that the payment was successfully captured.

Let me know once the whitelist has been added, and I can help verify that webhook deliveries are working correctly.

Thanks.