![]() ![]() Further more, if you use similar, slightly different passwords, this person could use the known password to guess your other passwords much more easier. For instance this person could use it later on, on a different device and does not have to access your computer anymore. Now everyone who has access to your computer knows your password – this is a huge difference. Sure, everyone who has access to your computer can simply use the stored automated filled in credentials to login into every website, but that’s not the point. Everyone with access to your computer can see your website passwords without entering a master password. With this bug none of your passwords are safe anymore. into „text“ to see the stored password in plain text Are you safe? Here is an expample for the login page of german’s ecommerce Rossmann: I tried this on different sites and it worked. You see the stored password in plain text. Change type=“password“ into type=“text“.Search for the code of the password field.Go to a login page where you enter a password. ![]() To see a stored password in plain text without using the main computer password, follow these steps: Normally.īut what if there is a way so see every password in plain text without entering your main password? Impossible? A major security leak? To see the stored passwords in plain text you need to enter your main computer password. ![]() But what if that does not matter because you can see each password stored in your Chrome Browser in plain text? Chrome’s Password ListĬhrome stores every password you save in Google Chrome’s password list ( chrome://settings/passwords). In Google Chrome, as in other browsers you can use a password generator to generate a strong password to be safe.
0 Comments
Leave a Reply. |