TikTok has patched a reflected XSS security flaw and a bug leading to account takeover impacting the firm's web domain. Reported via the bug bounty platform HackerOne by researcher Muhammed 'Milly' Taskiran, the first vulnerability relates to a URL parameter on the tiktok.com domain...