Confidant — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Confidant, with AI-generated Chinese analysis, references, and POCs.

Vendor: lyft

CVE ID	Title	CVSS	Severity	Published
CVE-2025-53440	WordPress Confidant theme <= 1.4 - Local File Inclusion vulnerability CWE-98	8.1	High	2026-06-02
CVE-2024-45793	Cross-site Scripting from in Confidant API call CWE-79	4.8	Medium	2024-09-20

All 2 known CVE vulnerabilities affecting Confidant with full Chinese analysis, references, and POCs where available.