IMDEA Software Institute PhD student Pepe Vila discovered a vulnerability in Google Chrome (CVE-2018-16075) that allowed any local HTML file to steal cookies and content from arbitrary domains. This issue has been patched in version 69.
Vulnerability in Chrome discovered by IMDEA Software student