CVE-2006-6965

Priority
Description
CRLF injection vulnerability in lib/exe/fetch.php in DokuWiki 2006-03-09e,
and possibly earlier, allows remote attackers to inject arbitrary HTTP
headers and conduct HTTP response splitting attacks via CRLF sequences in
the media parameter. NOTE: this issue can be leveraged for XSS attacks.
Notes
Package
Upstream:released
More Information

Updated: 2020-09-09 23:57:45 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)