Security: saved and other password hacking using inspect element option
Reported by
vishnujp...@gmail.com,
Oct 21 2016
|
|
Issue descriptionThis template is ONLY for reporting security bugs. If you are reporting a Download Protection Bypass bug, please use the "Security - Download Protection" template. For all other reports, please use a different template. Please READ THIS FAQ before filing a bug: https://www.chromium.org/Home /chromium-security/security-faq Please see the following link for instructions on filing security bugs: http://www.chromium.org/Home/chromium-security/reporting-security-bugs NOTE: Security bugs are normally made public once a fix has been widely deployed. VULNERABILITY DETAILS passwords can be hacked by right clicking on the password box and clicking inspect element option and look for type="password" and double click on it. Replace the word ‘password’ with ‘text‘.It should now look like type="text". Hit Enter. VERSION Chrome Version: [53.0.2785.143m] + [64-bit] Operating System: [windows 10 home single language] REPRODUCTION CASE open gmail,try to login,right click on the password box and click inspect element option and look for type="password" and double click on it. Replace the word ‘password’ with ‘text‘.It should now look like type="text". Hit Enter. FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION Type of crash: [tab, browser, etc.] Crash State: [see link above: stack trace, registers, exception record] Client ID (if relevant): [see link above] |
|
►
Sign in to add a comment |
|
Comment 1 by elawrence@chromium.org
, Oct 21 2016Status: WontFix (was: Unconfirmed)