Issue metadata
Sign in to add a comment
|
Security: Chrome Password manager is enabled in Chrome incognito mode
Reported by
bhuvans...@gmail.com,
Jul 11 2017
|
||||||||||||||||||||
Issue descriptionVULNERABILITY DETAILS When a user tries to login to gmail account in Chrome incognito browser, Chrome password manager pops up and asks whether to fill the form with the saved passwords/login details. Incognito mode is basically designed for a private browsing and it should not be taking passwords saved in normal Chrome. VERSION Chrome Version: 59.0.3071.115 Operating System: Windows 7 REPRODUCTION CASE 1. Open google chrome browser 2. Login to gmail account and save password in chrome password manager 3. Open chrome in incognito window 4. Visit gmail.com 5. Give username in it 6. There is a pop up asking whether to fill the saved password |
|||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||
Comment 1 by elawrence@chromium.org
, Jul 11 2017Labels: -Restrict-View-SecurityTeam allpublic
Status: WontFix (was: Unconfirmed)