Issue metadata
Sign in to add a comment
|
Password field not masked in Canary
Reported by
victorsu...@gmail.com,
Oct 6 2017
|
||||||||||||||||||||||
Issue descriptionPlease see the following link for instructions on filing security bugs: https://www.chromium.org/Home/chromium-security/reporting-security-bugs NOTE: Security bugs are normally made public once a fix has been widely deployed. VULNERABILITY DETAILS Please provide a brief explanation of the security issue. VERSION Chrome Version 63.0.3231.0 (Official Build) canary (64-bit) Operating System: [windows 7 Enterprise service pack 1] REPRODUCTION CASE Password for login is visible in the interface Attached image - Chrome bug
,
Oct 6 2017
Can you provide more information, e.g. either a public URL that reproduces this, or the HTML source (right-click that element and choose "Inspect" and then take a screenshot of the markup)? If you visit http://http-login.badssl.com, is the password masked for you?
,
Oct 7 2017
I'm seeing this happen on a number of sites with autofill in 63.0.3231.0 on Windows. Masking is returned to the control when it is focused.
,
Oct 7 2017
After updating the same machine to 3235, this does not seem to repro.
,
Oct 7 2017
,
Jan 14 2018
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 Deleted