CVE-2026-6873 | Django up to 5.2.14/6.0.5 django.http.HttpRequest.get_signed_cookie salt signature verification

A vulnerability described as problematic has been identified in Django up to 5.2.14/6.0.5. This affects the function django.http.HttpRequest.get_signed_cookie. Executing a manipulation of the argument salt can lead to improper verification of cryptographic signature.

This vulnerability appears as CVE-2026-6873. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More