CVE-2026-58480: Blocksy Companion Pro < 2.1.47 Unauthenticated File Upload via save_attachments — Zero Day Monitor