CVE-2026-32583
published 2026-03-16CVE-2026-32583: Missing Authorization vulnerability in Webnus Inc. Modern Events Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…
PriorityP337medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
EXPLOIT
EPSS
0.70%
48.5th percentile
Missing Authorization vulnerability in Webnus Inc. Modern Events Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Modern Events Calendar: from n/a through 7.29.0.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webnus_inc | modern_events_calendar | n/a – 7.29.0 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
Webnus Inc. Modern Events Calendar - Broken Access Control
nuclei·CVSS 5.3
CVE-2026-32583 [MEDIUM] Webnus Inc. Modern Events Calendar - Broken Access Control
Webnus Inc. Modern Events Calendar - Broken Access Control
Webnus Inc. Modern Events Calendar <= 7.29.0 contains a broken access control vulnerability caused by incorrectly configured access control security levels, letting attackers bypass authorization, exploit requires no special privileges.
Template:
id: CVE-2026-32583
info:
name: Webnus Inc. Modern Events Calendar - Broken Access Control
author: theamanrawat
severity: medium
description: |
Webnus Inc. Modern Events Calendar <= 7.29.0 contains a broken access control vulnerability caused by incorrectly configured access control security levels, letting attackers bypass authorization, exploit requires no special privileges.
impact: |
Attackers can bypass authorization and access restricted functionality or data, potentially compromi
2026-03-16
Published