An authentication bypass and site wide stored XSS (cross-site scripting) vulnerability was found on TikTok Ads as JWT (JSON Web Token) was not verified properly. We thank @johnstone for reporting this to our team and confirming its resolution.