Issue metadata
Sign in to add a comment
|
Security: Password is saved once you turn the show password
Reported by
saratpar...@gmail.com,
Mar 8 2016
|
||||||||||||||||||
Issue descriptionThis template is ONLY for reporting security bugs. Please use a different template for other types of bug reports. Please see the following link for instructions on filing security bugs: http://www.chromium.org/Home/chromium-security/reporting-security-bugs VULNERABILITY DETAILS Password of any user is most sensitive data which need to be handled correctly Once you logged in using show password, the password text is saved. Next time when you try logging in you can see the complete password text. So if the user has logged in using show password anytime then the password can be retrieved very easily . VERSION Chrome Version: Chrome 47.0.2526.83 Operating System: 4.4.2; SHV-E250K Build/K0T49H REPRODUCTION CASE 1> Open Chrome Browser in Android Mobile 2> Enter URL facebook.com 3> Type any valid email Id 4> Type valid passord with "Show password" enabled 5> log in 6> logout 7> Again try to login and check password is visible
,
Oct 1 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 2 2016
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Oct 2 2016
|
|||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||
Comment 1 by mbarbe...@chromium.org
, Mar 8 2016Status: WontFix (was: Unconfirmed)