Status: Unconfirmed
Owner: ----
Labels: Type-Bug Pri-2 OS-All Area-Misc
New issue 20379 by corbyz: Phishing attack in Google Checkout using Chrome
for Mac
http://code.google.com/p/chromium/issues/detail?id=20379
Chrome Version :
Google Chrome 4.0.202.0 (Official Build 23673)
WebKit 532.0
V8 1.3.4
User Agent Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_8; en-US)
AppleWebKit/532.0 (KHTML, like Gecko) Chrome/4.0.202.0 Safari/532.0
URLs (if applicable) : checkout.google.com
Other browsers tested: Firefox
Add OK or FAIL after other browsers where you have tested this issue:
Safari 4:
Firefox 3.x: OK
IE 7:
IE 8:
What steps will reproduce the problem?
1. Go to Google Voice, add funds using Google Checkout
2. Pay for credit
3. On the payment confirmation page, observe pink box in top right corner
with text: "Googlers - click here to use your @google.com account with
Checkout. more info close"
4. More info text is hyperlinked to "http://go/checkoutdasherization";
5. Click here text is hyperlinked to purchase an item using Google
Checkout
6. Item is "Octopus Food 0a46 - food for an octopus" Price $3.99 plus
$10.99 shipping
7. Order Details - asd, 123 456-7890, asd, asd, CA 94089 US
Billing Information & Privacy
Your credit card will be charged by Google. "GOOGLE * asd " will appear by
the charge on your credit card statement.
Return Policy for asd
asda asdasd
Shipping Policy for asd
dsa dsadsa
What is the expected result?
No link should be displayed
What happens instead?
Phishing attack
Please provide any additional information below. Attach a screenshot if
possible.
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---
