Primary

Context

Django Signed Cookie Salt Namespace Collision Vulnerability

Vulnerability

Patched

A vulnerability exists in Django versions 6.0 prior to 6.0.6 and 5.2 prior to 5.2.15, in the `django.http.HttpRequest.get_signed_cookie` method. The issue arises from a non-injective salt derivation process, where the cookie name and salt argument are simply concatenated. This allows remote attackers to manipulate cookies by using different `(name, salt)` pairs that result in the same concatenation, potentially leading to unauthorized cookie acceptance in different contexts. Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) may also be affected.

Impact

Exploitation of this vulnerability could lead to a signed cookie salt namespace collision, allowing cookies to be accepted in an incorrect context.

Remediation

Users can upgrade to Django versions 6.0.6 or 5.2.15 to address this vulnerability.

Added: Jun 3, 2026, 2:30 PM

Updated: Jun 3, 2026, 2:30 PM

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

0.6

exploitability

7.6

remediation

7.7

relevance

9.9

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.6

impact

0.6

exploitability

7.6

remediation

7.7

relevance

9.9

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Django Signed Cookie Salt Namespace Collision Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Django

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating