The App Developer should have a VDP (Vulnerability Disclosure Policy) which would allow security researchers to reach out directly to the developer and report any vulnerabilities found in an app. In addition to a VDP, developers should be proactively looking for any known vulnerabilities which may affect their product.
Click on the paperclip or four line icons to access more information about the source document and provision information.
Download this data
Download a copy of this map