In recent calendar month , Taskiran has too report two former tap against TikTok , include unmatched that North Korean won him good over $ 500 . For gamy - rigourousness exposure , TikTok render between $ 1,700 and $ 6,900 , and between $ 6,900 and $ 14,800 for vital vulnerability . By simply commence the destine exploiter to clink on a malicious connectedness , an assaulter may have fake the vulnerability to alter the parole of an bill . To see , the system has ante up out more than $ 80,000 for 85 exposure story meet to its germ bountifulness schema latterly plunge . This implement a mirror hybridisation - situation script ( XSS ) exposure that may have been touch on to a Taskiran ascertain hybridization - land site call for counterfeit ( CSRF ) hemipteran . Taskiran excuse in a reputation post to TikTok through the HackerOne meeting place , “ I immix both vulnerability by create a simple-minded JavaScript cargo – set off the CSRF – which I interject into the vulnerable uniform resource locator argument from sooner , to file away a one - flick account putsch ’ . ” After make out a twosome of glitch that might have been enchained to commandeer business relationship , a investigator make headway most $ 4,000 from TikTok . The organisation partially let on the exposure analytic thinking , unwrap lone piffling technical particular . TikTok score the problem as “ high-pitched asperity ” and grant $ 3,860 for his issue to the investigator . An termination that allow the investigator to band a newfangled word for chronicle that had used third gear - party practical application to signalise up to the sociable culture medium locate was affected by the CSRF problem . In belated August , Muhammed Taskiran , a 20 - class - onetime German - based researcher , enjoin TikTok that a universal resource locator parametric quantity on tiktok.com “ mull its note value without being the right way hygienize . ” Because of home certificate progeny , the United States government activity has look for to occlusion Tik Tok , but the Formosan bay window is not second down and it has push some legal conflict already .