@antn discovered an authorization issue that led to disclosure of internal company documentation. We addressed the vulnerability by ensuring the authenticated user belongs to the correct group before granting access.