diff --git a/CHANGELOG b/CHANGELOG
index e898e21ac..fe47781e0 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -1,10 +1,12 @@
 --------------------------------------------------------------------------------
                      Changes in version 5.1.11
 --------------------------------------------------------------------------------
-- fix for CVE-2019-12744, add .htaccess file to data directory, better
-  documentation for installing seeddms
-- fix for CVE-2019-12745 and CVE-2019-12801, propperly escape strings used
-  in Select2 js library used by UsrMgr and GroupMgr
+- fix for CVE-2019-12744 (Remote Command Execution through unvalidated
+  file upload), add .htaccess file to data directory, better documentation
+	for installing seeddms
+- fix for CVE-2019-12745 (Persistent or Stored XSS in UsrMgr) and
+  CVE-2019-12801 (Persistent or Stored XSS in GroupMgr), propperly escape
+	strings used in Select2 js library used by UsrMgr and GroupMgr
 - do not show attributes in search results in extra column anymore
 - fix setting language during login (Closes #437)
 - fix indexing documents even if no preIndexDocument hook is set (Closes #437)