changelog: better specified CVE description
Previous commit was wrong. Fixes #3372, really.pull/3064/head
parent
10d555bc91
commit
e13ae0aec5
|
@ -6,9 +6,9 @@
|
||||||
* FIX: unbreak Safari iOS line wrapping
|
* FIX: unbreak Safari iOS line wrapping
|
||||||
|
|
||||||
# 1.6.4
|
# 1.6.4
|
||||||
* SECURITY: exploitable /admin access - CVE-2018-9845
|
* SECURITY: Access Control bypass on /admin - CVE-2018-9845
|
||||||
* SECURITY: DoS with pad exports and arbitrary code execution - CVE-2018-9327
|
* SECURITY: Remote Code Execution through pad export - CVE-2018-9327
|
||||||
* SECURITY: Remote Code Execution - CVE-2018-9326
|
* SECURITY: Remote Code Execution through JSONP handling - CVE-2018-9326
|
||||||
* SECURITY: Pad data leak - CVE-2018-9325
|
* SECURITY: Pad data leak - CVE-2018-9325
|
||||||
* Fix: Admin redirect URL
|
* Fix: Admin redirect URL
|
||||||
* Fix: Various script Fixes
|
* Fix: Various script Fixes
|
||||||
|
|
Loading…
Reference in New Issue