A misconfigured Adobe Send server may allow malicious requests from other domains, potentially leading to cross-site request forgery attacks.
To mitigate this risk, configure the crossdomain.xml file to restrict allowed domains and headers. Only grant access to all domains if you have confirmed that your service is not vulnerable to CSRF attacks.