Martijn Brinkers ...

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@9619 7612ce4b-ef26-0410-bec9-ea0150e637f0

diff --git a/ChangeLog b/ChangeLog
index 7aa047592bc3244196bdd37fbc1abea360742ea6..ffb42c32f6ba76f0c04e54a32779938da9e704dc 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -366,7 +366,8 @@ Version 1.5.1 -- CVS
     email address (Bug #1219184).
   - Disallow access to the administrator plugin screens when the plugin is
     not enabled in the config.
-
+  - Security: fix several cross site scripting (XSS) attacks. Thanks go to
+    Martijn Brinkers for finding a lot of these. [CAN-2005-1769]
 
 Version 1.5.0 - 2 February 2004
 -------------------------------