testing github bug management : ExampleV1HotelsIdGetAuthInvalidSql

[sohail1024]

Project : testing github bug management

Job : Default

Env : Default

Category : InvalidAuthSQL

Tags : [OWASP A1, [PCI DSS 3.0] 6.5.1, OTG-AUTHN-004, FX Top 10 - API Vulnerability, Non-Intrusive, Injection]

Severity : Major

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 406

Headers : {X-Application-Context=[application:8090], Content-Length=[0], Date=[Mon, 04 Mar 2019 05:15:32 GMT]}

Endpoint : http://18.144.38.115:8090/example/v1/hotels/F0FpqnIp

Request :

Response :

Logs :
2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : URL [http://18.144.38.115:8090/example/v1/hotels/F0FpqnIp] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Method [GET] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Request [] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Request-Headers [{Content-Type=[application/json], Accept=[application/xml, application/json]}] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Response [] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Response-Headers [{X-Application-Context=[application:8090], Content-Length=[0], Date=[Mon, 04 Mar 2019 05:15:32 GMT]}] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : StatusCode [406] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Time [94] 2019-03-04 05:15:32 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Size [0] 2019-03-04 05:15:32 ERROR [ExampleV1HotelsIdGetAuthInvalidSql] : Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [406 == 401 OR 406 == 403] result [Failed]

--- FX Bot ---

[sohail1024]

Project : testing github bug management

Job : Default

Env : Default

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 406

Headers : {X-Application-Context=[application:8090], Content-Length=[0], Date=[Mon, 04 Mar 2019 05:39:57 GMT]}

Endpoint : http://18.144.38.115:8090/example/v1/hotels/v23UfHVb

Request :

Response :

Logs :
Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [406 == 401 OR 406 == 403] result [Failed] --- FX Bot ---

[sohail1024]

Project : testing github bug management

Job : Default

Env : Default

Region : US_WEST_2

Result : fail

Status Code : 406

Headers : {X-Application-Context=[application:8090], Content-Length=[0], Date=[Mon, 04 Mar 2019 08:48:12 GMT]}

Endpoint : http://18.144.38.115:8090/example/v1/hotels/2Cojv4hG

Request :

Response :

Logs :
2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : URL [http://18.144.38.115:8090/example/v1/hotels/2Cojv4hG] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Method [GET] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Request [] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Request-Headers [{Content-Type=[application/json], Accept=[application/xml, application/json]}] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Response [] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Response-Headers [{X-Application-Context=[application:8090], Content-Length=[0], Date=[Mon, 04 Mar 2019 08:48:12 GMT]}] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : StatusCode [406] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Time [63] 2019-03-04 08:48:12 DEBUG [ExampleV1HotelsIdGetAuthInvalidSql] : Size [0] 2019-03-04 08:48:12 ERROR [ExampleV1HotelsIdGetAuthInvalidSql] : Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [406 == 401 OR 406 == 403] result [Failed]

--- FX Bot ---