CVE-2026-58480 - Blocksy Companion Pro < 2.1.47 Unauthenticated File Upload via save_attachments
CVE ID :CVE-2026-58480 Published : July 8, 2026, 2:17 p.m. | 57 minutes ago Description :Blocksy Companion Pro plugin for WordPress before 2.1.47 contains an unauthenticated arbitrary file upload vulnerability that allows attackers to upload executable files by bypassing extension validation...