Django is a free and open source Web application framework that is written in Python. Django version 1.4 introduced cookie-based session storage and Django version 1.7 is currently under development.
Read more here – http://osvdb.org/show/osvdb/98020 and http://maverickblogging.com/security-vulnerability-with-django-cookie-based-sessions/