New issue
Advanced search Search tips

Issue 802229 link

Starred by 1 user
Status: Available
Owner: ----
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Chrome , Mac
Pri: 3
Type: Bug

Blocking:
issue 771657



Sign in to add a comment

[Password Manager] Wrong password is saved on bithumb.com

Project Member Reported by kolos@chromium.org, Jan 16 2018 
What steps will reproduce the problem?
(1) Visit https://www.bithumb.com/u1/US106
(2) Fill form
(3) Click on the "key" icon and check what password is going to be saved

What is the expected result?
Password value should be saved.

What happens instead?
"security password" (4-digits pin) will be saved

Comment 1 by kolos@chromium.org, Jan 16 2018 

LocateSpecificPasswords has a bug. In "Default" branch, we assume that the number of passwords are 3. It is not true for bithumb.com. The "default" branch should be replaced with "case 3:". Also add default-branch: |*current_password = passwords[0];|. 

If there are more than 3 passwords, we can also consider to find any two password fields that have the same value. 

Any heuristic is not correct in 100% of cases, but we can make it better.

Comment 2 by kolos@chromium.org, Jan 26 2018

Blocking: 771657

Comment 3 by dvadym@chromium.org, Jan 26 2018

Labels: -Hotlist-GoodFirstBug
The problem here is that using autocomplete attributes on this site is not consistent:

The third password field (i.e. "security password") has new-password autocomplete attribute, other password fields don't have any autocomplete attributes. If Password Manager finds autocomplete attributes, it stops to consider fields without them. So here Password Manager chooses security password.

Probably crowdsourcing could help here.

Sign in to add a comment