CVE-2026-6907 | Django up to 5.2.13/6.0.4 django.middleware.cache.UpdateCacheMiddleware cache containing sensitive information

Inserito da Angelo Barbosa | Mag 5, 2026 | CVE

A vulnerability has been found in Django up to 5.2.13/6.0.4 and classified as problematic. Affected is an unknown function of the component django.middleware.cache.UpdateCacheMiddleware. The manipulation leads to use of cache containing sensitive information.

This vulnerability is uniquely identified as CVE-2026-6907. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-6907 | Django up to 5.2.13/6.0.4 django.middleware.cache.UpdateCacheMiddleware cache containing sensitive information

Post correlati

CVE-2026-20202 | Splunk Enterprise/Cloud Platform Username edit_user unicode encoding (SVD-2026-0401)

CVE-2026-33129 | h3js h3 up to 2.0.0-rc.8/2.0.1-rc.9 requireBasicAuth timing discrepancy

CVE-2025-0918 | yaycommerce SMTP for SendGrid Plugin up to 1.3.1 on WordPress cross site scripting

CVE-2024-13474 | enituretechnology LTL Freight Quotes Plugin up to 2.2.3 on WordPress dropship_edit_id/edit_id sql injection