I wrote to a developer at Mozilla (as Firefox is targeted for exploits too), they forward it to the security team, and they offered to refer me to Citizen Lab. Dunno what will come of that, guess I will wait. Thanks for the pointers, I will try messaging them directly again if that does not work out.
Done, no reply, guess they are too busy already. Got a better reply from OCCRP (that named Bolsonaro 2020 Corrupt Person of the Year), but it is too much for them.
I installed it on a test computer. Worked for a while, but started crashing after one minute of start up, so I uninstalled. If you have a spare computer that will exist only to run it and not have any other data, might be worth of a test.