CVE-2018-10099
The CVE-2018-10099 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in Google Monorail prior to 2018-04-04 affecting CSV downloads, where timing calculations for requests with duplicated columns can leak sensitive information from bug reports via an XS-Search-like exposure. Affec...