Virtual Security Research, LLC. Security Advisory – In mid-January, VSR identified a vulnerability in Google Chrome which could be used in phishing attacks in specific types of web sites. This issue may make it much easier to convince a victim to submit web application credentials to the attacker’s site.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/86371/chrome-crossorigin.txt
Source: https://packetstormsecurity.com/files/86371/Chrome-Password-Manager-Cross-Origin-Weakness.html