This template is ONLY for reporting security bugs. If you are reporting a
Download Protection Bypass bug, please use the "Security - Download
Protection" template. For all other reports, please use a different
template.

Please see the following link for instructions on filing security bugs:
http://www.chromium.org/Home/chromium-security/reporting-security-bugs

NOTE: Security bugs are normally made public once a fix has been widely
deployed.

VULNERABILITY DETAILS
Saved passwords in google chrome can be seen easily by this trick. Passwords in unlocked computers will be a target.


Version 53.0.2785.116 (64-bit) stable
Operating System: OSX el capitan 10.11.3 (15D21)

REPRODUCTION CASE

So go to a page where your password is saved thru chrome,
right click anywhere on the page, click on "Inspect"
find the html code for password portion
check attachment 1
 look for:
type="password"

replace "password" with "text" 

press enter
you can now see the saved password

check attachment 2

Please fix it. If you think this is worthy of your bug bounty reward, hit me up on pranitjannawar@gmail.com


FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION
Type of crash: [tab, browser, etc.]
Crash State: [see link above: stack trace, registers, exception record]
Client ID (if relevant): [see link above]

 

Deleted: attachment1.png 484 KB

	attachment1.png 484 KB View Download

Deleted: attachment2.png 484 KB

	attachment2.png 484 KB View Download