Unrated severityNVD Advisory· Published Jan 29, 2007· Updated Jun 16, 2026
CVE-2006-6965
CVE-2006-6965
Description
CRLF injection vulnerability in lib/exe/fetch.php in DokuWiki 2006-03-09e, and possibly earlier, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the media parameter. NOTE: this issue can be leveraged for XSS attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
8- secunia.com/advisories/23926nvdVendor Advisory
- secunia.com/advisories/24853nvdVendor Advisory
- osvdb.org/31620nvd
- security.gentoo.org/glsa/glsa-200704-08.xmlnvd
- sla.ckers.org/forum/read.phpnvd
- www.securityfocus.com/bid/22236nvd
- www.vupen.com/english/advisories/2007/0357nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/31930nvd
News mentions
0No linked articles in our index yet.