CVE-2025-61821
Summary (CVE-2025-61821): Adobe ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an improper restriction of XML External Entity Reference (XXE) in the XML document builder, which could allow an attacker to read arbitrary files from the server’s filesystem and access sensit...