Ok hypothetically speaking here, if someone say found your google verification code in your meta tag or used some kind of way to find the verification file on your website or faked it some how could they create another google websmaster tools login and delete your pages or worst deindex your site, or even worst report paid links?
I think it could be done if that one had access to your computer or access passwords other wise i never heard about this kind of issues happening. But --> There is no security in this crazy world
No. I tried this, and when you add the site you have to put a new META tag/upload a different file. And since they don't have FTP access to upload the file or edit the index file, they couldn't verify the site and thus cannot change anything.
I don't think so, hypothetically speaking. Getting your verification code is no problem at all. It's in your HTML, or a file in your Dir. But I don't think Google would make it that easy. I'm sure they'll have the verification code 'hard wired' to your Google login. If some has your Google login, then they don't need you verification code to make mischief ...
Well, what we are discussing is if in case we fake google than is it possible or not? Further, google generates new code for same website being registered by second account. so it's not that easy to fool around with google but still, what if someone got your ftp password? they can easily upload the new verification file on your host and get verified, hence having ability to remove URL.
Google wont actually allow you have a second account for same site. Think they will detect that. If they can get in, they can do lot of things.
I think, there's no problem with accessing your verification data because the data is inside the account in your email. Maybe its possible, if someone know your email account that you use on your google webmaster tools.
It's not just a matter of using the tool to remove a url. The page also has to either return a 404 or be blocked by robots.txt or a meta robots tag.