Please get in touch with us at hi@last9.io to report the vulnerability.