Razer: RXSS at https://api.easy2pay.co/inquiry.php via txid parameter.

The tester discovered a reflected XSS on an API server related to Razer Pay TH. Note this is not a site that users will typically visit via a web browser front end. Razer thanks the tester for his diligence and the clear report...