diff options
| author | cash <cash.costello@gmail.com> | 2013-03-12 19:44:48 -0400 |
|---|---|---|
| committer | cash <cash.costello@gmail.com> | 2013-03-12 19:44:48 -0400 |
| commit | 34b14b305f5a106316fdc403c4ce80b25e89b51d (patch) | |
| tree | 5b46b71118d8490e0311989ae5afe25fbab96cf3 | |
| parent | 329620b0f667d3283ef2d932760264110c4cfaad (diff) | |
| download | elgg-34b14b305f5a106316fdc403c4ce80b25e89b51d.tar.gz elgg-34b14b305f5a106316fdc403c4ce80b25e89b51d.tar.bz2 | |
final update on changes file before release
| -rw-r--r-- | CHANGES.txt | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/CHANGES.txt b/CHANGES.txt index 698fa9d61..797fb9c62 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -16,6 +16,7 @@ Version 1.8.14 * Steve Clay Security Fixes: + * Fixed a XSS vulnerability when accepting URLs on user profiles * Fixed bug that exposed subject lines of messages in inbox * Added requirement for CSRF token for login |