diff --git a/CHANGELOG.md b/CHANGELOG.md
index 270e6c6c9..55246b34f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -20,6 +20,7 @@ All notable changes to Gogs are documented in this file.
 ### Fixed
 
 - [Security] Potential open redirection with i18n.
+- [Security] Potential ability to delete files outside a repository.
 - [Security] Potential RCE on mirror repositories. [#5767](https://github.com/gogs/gogs/issues/5767)
 - [Security] Potential XSS attack with raw markdown API. [#5907](https://github.com/gogs/gogs/pull/5907)
 - Open/close milestone redirects to a 404 page. [#5677](https://github.com/gogs/gogs/issues/5677)