CNNVD-202601-4674 Information

CNNVD ID

CNNVD-202601-4674

Related CVE

CVE-2025-14472

• CNNVD Published: 2026-01-28

Description (Chinese)

Drupal Acquia Content Hub是Drupal社区的一个内容分发插件。 Drupal Acquia Content Hub 3.6.4之前版本和3.7.3之前版本存在安全漏洞，该漏洞源于容易受到跨站请求伪造攻击。

Description (English)

Drupal Acquia Content Hub is a content distribution plugin for the Drupal community. There is a security loophole in the previous versions of Drupal Acquia Content Hub 3.6.4 and 3.7.3, which stems from the vulnerability to cross-site requests for false attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Drupal

Published

2026-01-28

Last Modified

2026-02-24

References

https://www.drupal.org/sa-contrib-2025-125 https://vigilance.fr/vulnerability/Drupal-Acquia-Content-Hub-Cross-Site-Request-Forgery-dated-10-12-2025-49063

Patch

https://www.drupal.org/sa-contrib-2025-125