A pair of vulnerabilities in a popular collaboration suite could allow malicious actors to access sensitive data.