diff options
author | Harald Eilertsen <haraldei@anduin.net> | 2022-03-25 22:14:39 +0100 |
---|---|---|
committer | Harald Eilertsen <haraldei@anduin.net> | 2022-03-25 22:14:39 +0100 |
commit | 2ab3d072b0ed7d9a7adb43bb5a3d56b0d90ec619 (patch) | |
tree | 7656c363ff2c04ad5a10574ca482b16f438bb368 | |
parent | 03973f5d1d25b54f0b81ccbeb08b18b745b80b22 (diff) | |
download | volse-hubzilla-2ab3d072b0ed7d9a7adb43bb5a3d56b0d90ec619.tar.gz volse-hubzilla-2ab3d072b0ed7d9a7adb43bb5a3d56b0d90ec619.tar.bz2 volse-hubzilla-2ab3d072b0ed7d9a7adb43bb5a3d56b0d90ec619.zip |
Update changelog with missing fix and cve
-rw-r--r-- | CHANGELOG | 5 |
1 files changed, 3 insertions, 2 deletions
@@ -28,8 +28,9 @@ Hubzilla 7.2 (2022-??-??) Bugfixes - Fix comments_closed date on posts where comments are disabled - - Fix open redirect via rpath query param - - Fix local file inclusion in redbasic theme + - Fix open redirect via rpath query param (CVE-2022-27256) + - Fix cross-site scripting via rpath query param (CVE-2022-27258) + - Fix local file inclusion in redbasic theme (CVE-2022-27257) - Fix baseurl for css and js - Fix duplicate IDs in login form - Fix unknown author not fetched if w2w comment arrives |