If you find a vulnerability, create an issue here.
Security: bluewave-labs/Checkmate
Security
SECURITY.md
-
Sensitive Bearer Token Exposure via Public Status Pages When showURL Setting is EnabledGHSA-3m74-8cg9-rp8j published
Jul 7, 2026 by ajhollidHigh -
Regular Expression Denial of Service (ReDoS) via User-Controlled Regex in Monitor Advanced MatchingGHSA-4c6j-p2cv-wf56 published
Jul 6, 2026 by ajhollidModerate -
Pre-auth Denial of Service via File Upload on RegistrationGHSA-9xvg-x28f-m78m published
Jun 11, 2026 by ajhollidHigh -
Mass Assignment Privilege Escalation in CheckmateGHSA-6368-x7wr-wpm2 published
Mar 20, 2026 by gorkem-bwlHigh -
Unauthenticated Access to Unpublished Status PageGHSA-57xf-wg6w-fjrr published
Mar 5, 2026 by gorkem-bwlModerate
Learn more about advisories related to bluewave-labs/Checkmate in the GitHub Advisory Database