Kunpei Sakai

2 exploits Active since May 2018
CVE-2018-11627 WRITEUP MEDIUM WRITEUP
Sinatra < 2.0.2 - XSS
Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs upon a params parser exception.
CVSS 6.1
CVE-2018-17075 WRITEUP HIGH WRITEUP
Go html package <2018-07-13 - Panic
The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of <template><object>, <template><applet>, or <template><marquee>. This is related to HTMLTreeBuilder.cpp in WebKit.
CVSS 7.5