Ref# ADV2025_427 | Date: Dec 12th 2025

---

Drupal published security advisories to address vulnerabilities in the following products on December 10, 2025. It is recommended that you take these necessary precautions by ensuring your products are always updated. 

• Acquia Content Hub – versions 3.6.x prior to 3.6.4 

• Acquia Content Hub – versions 3.7.x prior to 3.7.3 

 

For more information on this update, you can follow this URL: 

• Acquia Content Hub - Moderately critical - Cross-Site Request Forgery - SA-CONTRIB-2025-125 

• Drupal Security Advisories 

 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

References 

• Acquia Content Hub – Moderately critical – Cross-Site Request Forgery – SA-CONTRIB-2025-125. (2025, December 10). Drupal.org. https://www.drupal.org/sa-contrib-2025-125 

• Security advisories | Drupal.org. (n.d.). https://www.drupal.org/security 

• Drupal Security Advisory. (December 11th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/drupal-security-advisory-av25-828