Hello,
I’ve submitted a vulnerability to security@pipedrive.com as mentioned on https://www-cms.pipedriveassets.com/documents/PVDP_2022.pdf
But it seems like no one is watching the email address, I haven’t received any kind of acknowledgement or message that you received the email or started to work on it.
Please confirm from your internal team.