bizpay : QuotesIdGetAnonymousInvalid

Project : bizpay

Job : Default

Env : Default

Category : Unsecured

Tags : [ OWASP - OTG-AUTHN-002, FX Top 10 - API Vulnerability]

Severity : Major

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 500

Headers : {}

Endpoint : http://api.bizpay.co.uk/v1.25/quotes/337398896?actor_id=337398896

Request :

Response :
I/O error on GET request for "http://api.bizpay.co.uk/v1.25/quotes/337398896": Read timed out; nested exception is java.net.SocketTimeoutException: Read timed out

Logs :
2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : URL [http://api.bizpay.co.uk/v1.25/quotes/337398896?actor_id=337398896] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Method [GET] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Request [] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Request-Headers [{Content-Type=[application/json], Accept=[application/json]}] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Response [I/O error on GET request for "http://api.bizpay.co.uk/v1.25/quotes/337398896": Read timed out; nested exception is java.net.SocketTimeoutException: Read timed out] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Response-Headers [{}] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : StatusCode [500] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Time [16589] 2019-01-21 06:16:23 DEBUG [QuotesIdGetAnonymousInvalid] : Size [162] 2019-01-21 06:16:23 ERROR [QuotesIdGetAnonymousInvalid] : Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [500 == 401 OR 500 == 403] result [Failed]

--- FX Bot ---

zahedmohammed / testingApi

bizpay : QuotesIdGetAnonymousInvalid #68