Merge pull request #1005 from virtualtam/refactor/authentication

author VirtualTam <virtualtam+github@flibidi.net>

Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)

committer GitHub <noreply@github.com>

Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)
author VirtualTam <virtualtam+github@flibidi.net>
Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)
committer GitHub <noreply@github.com>
Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)
diff --git a/CHANGELOG.md b/CHANGELOG.md

index 120c5d2250ed490ae2feb466a450b9b3ccc5499f..33feac2096c173645b5c3a400e7d191e16a0edaf 100644 (file)
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -40,7 +40,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/).
  
  ### Security
  
-- Vulnerability introduced in v0.9.1 fixed.
+- Fixed reflected XSS vulnerability introduced in v0.9.1, discovered by @chb9 ([CVE-2017-15215](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15215)).
  
  ## [v0.9.1](https://github.com/shaarli/Shaarli/releases/tag/v0.9.1) - 2017-08-23
author	VirtualTam <virtualtam+github@flibidi.net>
	Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)
committer	GitHub <noreply@github.com>
	Wed, 25 Oct 2017 20:49:22 +0000 (22:49 +0200)