Issue metadata
Sign in to add a comment
|
Security: reCAPTCHA I'm not a robot Bypass
Reported by
grswe...@gmail.com,
Apr 12 2018
|
||||||||||||||||||
Issue descriptionVULNERABILITY DETAILS Bug lets you Bypass reCAPTCHA "I'm not a robot" test when performing a google search from the address bar in incognito mode from an IP address that"appear to be in violation of the Terms of Service." VERSION Chrome Version: Version 65.0.3325.181 (Official Build) (64-bit) Operating System: Win 10 Pro Version 1709 OS Build 16299.309 REPRODUCTION CASE 1. Have an IP address that flagged for "unusual traffic" (In my case I have a shared IP through a small ISP) 2. Open an incognito tab (or an instance that does not have cookies unflagging your browser) 3. Perform a search using the address bar. At this point you should hit a reCAPTCHA "I'm not a robot" test (photo1) I'm assuming this is to stop bots but it won't. 4. Perform a search using the address bar again. This time the search will act as normal.
,
Jul 20
This bug has been closed for more than 14 weeks. Removing security view restrictions. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot |
|||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||
Comment 1 by elawrence@chromium.org
, Apr 12 2018