From 281febed57fa898907b314393fbcf9fb17fe8980 Mon Sep 17 00:00:00 2001
From: mischa <16416509+vis2k@users.noreply.github.com>
Date: Thu, 27 Jul 2023 10:28:11 +0200
Subject: [PATCH] Update README.md

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index a8dcb7995..84659be12 100644
--- a/README.md
+++ b/README.md
@@ -275,6 +275,7 @@ A lot of projects use Mirror in production. If you found a critical bug / exploi
 **Credits / past findings / fixes:**
 * 2020, fholm: fuzzing ConnectMessage to stop further connects [[#2397](https://github.com/vis2k/Mirror/pull/2397)]
 * 2023-04-05: IncludeSec: [kcp2k UDP spoofing](http://blog.includesecurity.com/?p=1407) [[#3286](https://github.com/vis2k/Mirror/pull/3286)]
+* 2023-06-27: James Frowen: ClientToServer [SyncVar] [allocation attacks](https://github.com/MirrorNetworking/Mirror/pull/3562)
 
 ---
 # Credits & Thanks 🙏