Timeline & Responsible Disclosure Initial Contact: Upon discovering this vulnerability on October 27, 2025, I immediately reached out to Filevine’s security team via email. November 4, 2025: Filevine’s security team thanked me for the writeup and confirmed they would review the vulnerability and fix it quickly. November 20, 2025: I followed up to confirm the patch was in place from my end, and informed them of my intention to write a technical blog post. November 21, 2025: Filevine confirmed the...