Why Chrome’s autocomplete is insecure and how you can turn it off
Quincy Larson

For anyone asking if their (other password / autofill manager) is vulnerable, I’ve created an easy to use test that shows an alert to the user with the values the form captured:


And, so that you know I’m not doing any funny business, here’s the source code: https://gist.github.com/toddmedema/4a419893668957a61a5b63ccad33f989