This template is ONLY for reporting security bugs. If you are reporting a
Download Protection Bypass bug, please use the "Security - Download
Protection" template. For all other reports, please use a different
template.

Please READ THIS FAQ before filing a bug: https://chromium.googlesource.com
/chromium/src/+/master/docs/security/faq.md

Please see the following link for instructions on filing security bugs:
https://www.chromium.org/Home/chromium-security/reporting-security-bugs

NOTE: Security bugs are normally made public once a fix has been widely
deployed.

VULNERABILITY DETAILS: i just find a security bug on chromes official site chromium.iam using an android phone and i tried this URL on computer also.
https://chromium.com/%2500 i searched this URL and i got a crash page "your connection is not private"and and in bracket the page saying that (attackers might be trying to steal your passwords messages credit cards).an expert attacker can missuse this URL and access the chromium page.


VERSION
Chrome Version:64.0.3282.123 [x.x.x.x] + [stable, beta, or dev]
Operating System:android 7.0.0 [Please indicate OS, version, and service pack level]

REPRODUCTION CASE:https://chromium.com/%2500
This URL CAN REPRODUCE IT.

FOR CRASHES, PLEASE INCLUDE THE FOLLOWING ADDITIONAL INFORMATION
Type of crash:chromium page crash using URL [tab, browser, etc.]
Crash State:https://chromium.com/%2500 this is the URL that can crash chromium page . [see link above: stack trace *with symbols*, registers,
exception record]
Client ID (if relevant): ajithzawzyankee@gmail.com[see link above]

 

Deleted: Screenshot_20180131-210318.png 88.3 KB

	Screenshot_20180131-210318.png 88.3 KB View Download

Deleted: 20180131_205954.mp4 4.5 MB

	20180131_205954.mp4 4.5 MB View Download