CVE-2006-6965

Name of the Vulnerable Software and Affected Versions: DokuWiki versions prior to 2006-03-09e

Description: A CRLF injection issue allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the media parameter. This issue can also be leveraged for XSS attacks.

Recommendations: For versions prior to 2006-03-09e, update to a version that includes the fix for this issue to prevent CRLF injection and potential XSS attacks.