CVE-2026-16206 in django-oauth-toolkitinfo

Prediction

by VulDB Data Team • 07/18/2026

A security vulnerability has been detected in django-oauth django-oauth-toolkit 3.3.0. This issue affects the function _load_id_token of the file oauth2_provider/oauth2_validators.py. The manipulation leads to session expiration. The attack can be initiated remotely. The project was informed of the problem early through an issue report but has not responded yet.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsible

VulDB

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

low

Sources

Interested in the pricing of exploits?

See the underground prices here!