bizpay : CustomersGetAnonymousInvalid

Project : bizpay

Job : Default

Env : Default

Category : Unsecured

Tags : [ OWASP - OTG-AUTHN-002, FX Top 10 - API Vulnerability]

Severity : Major

Region : FXLabs/US_WEST_1

Result : fail

Status Code : 500

Headers : {}

Endpoint : http://api.bizpay.co.uk/v1.25/customers&actor_id=1088586712

Request :

Response :
I/O error on GET request for "http://api.bizpay.co.uk/v1.25/customers&actor_id=1088586712": Read timed out; nested exception is java.net.SocketTimeoutException: Read timed out

Logs :
2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : URL [http://api.bizpay.co.uk/v1.25/customers&actor_id=1088586712] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Method [GET] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Request [] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Request-Headers [{Content-Type=[application/json], Accept=[application/json]}] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Response [I/O error on GET request for "http://api.bizpay.co.uk/v1.25/customers&actor_id=1088586712": Read timed out; nested exception is java.net.SocketTimeoutException: Read timed out] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Response-Headers [{}] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : StatusCode [500] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Time [16533] 2019-01-21 06:16:24 DEBUG [CustomersGetAnonymousInvalid] : Size [175] 2019-01-21 06:16:24 ERROR [CustomersGetAnonymousInvalid] : Assertion [@StatusCode == 401 OR @StatusCode == 403] resolved-to [500 == 401 OR 500 == 403] result [Failed]

--- FX Bot ---

zahedmohammed / testingApi

bizpay : CustomersGetAnonymousInvalid #72