Merge pull request #1050 from virtualtam/changelog/cve

Reference CVE-2018-5249 in CHANGELOG
This commit is contained in:
VirtualTam 2018-01-09 21:15:34 +01:00 committed by GitHub
commit 310f17203d
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -8,7 +8,8 @@ and this project adheres to [Semantic Versioning](http://semver.org/).
**XSS vulnerability fixed. Please update.** **XSS vulnerability fixed. Please update.**
## Security ## Security
- Fix an XSS (cross-site-scripting) vulnerability in `index.php` - Fix an XSS (cross-site-scripting) vulnerability in `index.php` -
[CVE-2018-5249](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5249)
## [v0.9.2](https://github.com/shaarli/Shaarli/releases/tag/v0.9.2) - 2017-10-07 ## [v0.9.2](https://github.com/shaarli/Shaarli/releases/tag/v0.9.2) - 2017-10-07
@ -183,7 +184,8 @@ Theming:
**XSS vulnerability fixed. Please update.** **XSS vulnerability fixed. Please update.**
## Security ## Security
- Fix an XSS (cross-site-scripting) vulnerability in `index.php` - Fix an XSS (cross-site-scripting) vulnerability in `index.php` -
[CVE-2018-5249](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5249)
## [v0.8.4](https://github.com/shaarli/Shaarli/releases/tag/v0.8.4) - 2017-03-04 ## [v0.8.4](https://github.com/shaarli/Shaarli/releases/tag/v0.8.4) - 2017-03-04
### Security ### Security