Last week, Dropbox wanted its news to be about its growing sales presence abroad — it’s expanding the partner channel for Dropbox for Business to the European Union, Canada, United Kingdom, Australia and New Zealand. But that plan went sideways when news surfaced (thanks to rival Intralinks) of a vulnerability in the way Dropbox handled live URLs.

In an email to reporters, an Intralinks spokeswoman said the issue surfaced in a “routine Google(s goog) Adwords campaign” when referral searches led to documents that contained personally identifiable information. This was because users went with a default public setting before sharing their documents.

Intralinks reportedly alerted Dropbox about this in November and was told it was not a huge deal. Last week, Dropbox issued a fix.

Companies that classify themselves as enterprise-grade file-share-and-sync providers (companies like, say, Intralinks) love to claim that consumer-oriented Dropbox isn’t ready for primetime, but to be fair, business-class software often suffers from vulnerabilities…