New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 715002 link

Starred by 1 user
Status: WontFix
Owner: ----
Closed: Nov 2017
Cc:
msrchandra@chromium.org
EstimatedDays: ----
NextAction: ----
OS: Android
Pri: 3
Type: ----



Sign in to add a comment

This post is about a simple vulnerability found on google account which could have been used to hack into other user's account easily

Reported by sandeshk...@gmail.com, Apr 25 2017 
Device name:

From "Settings > About Chrome",g mail app
Application version:
Operating system:

URLs (if applicable):

Steps to reproduce:
(1)1 you want to go on this site
[http://anomor.com/] 
(2)
then you want to sign up on it then you got the username and password of your own for this site
then front of you see the list of link that you sent to the victims

select one of them and send to the victim after he login then you got him password esily 
(3)

Expected result:i got him password esily 


Actual result: i got him password esily

Comment 1 by msrchandra@chromium.org, Oct 26 2017

Cc: msrchandra@chromium.org
Labels: Needs-triage-Mobile Triaged-Mobile Needs-Feedback
@sandeshkhadase05 -- Thank You for the report.
Tested the issue on Latest Stable# 61.0.3163.98 & Latest Canary# 64.0.3249.0 and could not reproduce the issue.
After signing in, we are able to see Username, mail Id, Age and Country. Password is not seen anywhere.

Could you please re-check the issue on latest stable and provide us with a screen cast if possible which would help us triage the issue further.
Thanks in Advance.

Comment 2 by dtapu...@chromium.org, Nov 8 2017

Status: WontFix (was: Unconfirmed)
Closing due to lack of feedback response that has been requested. If the issue still reproduces please open a new issue with the details requested.

Sign in to add a comment