Bug Reports - Burp Suite User Forum

Scope Bug

Description Show only in-scope items filter is not functional when opening a Burp project that already has the option enabled. The filter works correctly when re-applied manually. Version v2021.3.1 Reproduction...

BurpSuite Pro not finding Type Index 0x00500200 or 0x00500600 when present

We have done multiple passive scans of a site and are not getting any issue results, even though issues are present in the target URL responses, in BurpSuitePro for * TLS cookie without secure flag set Medium 0x00500200 *...

Facebook Telling Me To Install Your Software

Hi guys, I'm just interested if it's legal for Facebook to be suggesting i install and use your software to verify my bug reports. Saturday, March 20, 2021 at 1:42 AM Hi, We are unable to reproduce the issue as...

Failed to replay sequence app_name - timeout occured while navigating to url_address

Hi Team, I am facing above mentioned error while scheduling the scan. What could be the reason? Also, at times - I get error on the scan: "Errors: request timeout". Can anyone help? Best Regards MJ

No se puede validar la licencia

Al momento de instalar burp suite enterprise en un Windows 10 o ubuntu cuando solicita cargar la licencia da error en siendo que esta vigente hasta el 29 de Octubre 2021. mensaje de error: There was a problem checking...

Hackvertor temporarily hangs UI

If Hackvertor is loaded, selecting text on Repeater or Intruder makes the UI hang for a few seconds (with spinning beachball and all). Disabling the extension fixes the problem. I only see this behavior on my Mac...

Cannot login on a different computer

I have been trying to login on a separate computer, which is a build I use that has Burp Suite on it, but keep getting an error message. This is different to the 'login failed' message when using incorrect credentials, and...

Authentication bypass via OAuth implicit flow - SessionNotFound: invalid_request

Hi, The lab "Authentication bypass via OAuth implicit flow" is not working. After clicking "My account" page loads for few seconds and shows with error: SessionNotFound: invalid_request at Provider.getInteraction...

Password Reset Poisoning via Dangling Markeup

This lab is not working for me at all. I'm following a video online and doing the steps exactly but when I try to add a port it says 504 Gateway Timeout. OR it says bad request CRSF token expired or something along those...

Cross Site Scripting (DOM based)

Burp has created two different tentative DOM XSS issues with this description: "The application may be vulnerable to DOM-based cross-site scripting. Data is read from location and passed to $() via the following...

Burp Suite Pro Project File Corrupt

Hi team, Im having a project file when attempt to open it, it shows the following message: Failed to create Burp project: ArrayIndexOutOfBoundsException Current Burp version I'm using: Burp version 2021.3.1 Build...

Wrong URL path is used in Reflected XSS vulnerability description

Initially below URL is used as vulnerable application URL path. https://insecure-website.com/search?term=gift And to show how is it vulnerable , the URL path got changed as...

Lab: Authentication bypass via OAuth implicit flow

Lab: Authentication bypass via OAuth implicit flow is broken :/ It gives SessionNotFound: invalid_request error when I try to login in your own "social media"

ASP ViewState does not show up

I have an issue with the ViewState Tab not showing up in the Request/Response view I can see the hidden form elements and on a POST request I can see the Parameters being sent, but the Tab is not showing up. Here is a...

Need help!

Heya! It says my CA Certificate isn't installed, even though I did on my phone. And I gave it permissions + Restarted my springboard.

Burp crashes, asking for license key on relaunch

Hi there! I've encountered something pretty odd today twice. I'm running the 64-bit Windows version of Burp Suite Pro (1.7.27) and the application just crashes. Upon relaunching, I'm prompted to enter my license key. I'm...

Issues installing Burp in Mac OS Catalina 10.15.4

Hello, I am not able to install burp suite professional for a MAC with OS Catalina 10.15.4 I see the following message error when I tried to Install it: "Burp Suite Professional Installer" can't be opened because Apple...

Academy - Clickjacing attacks

Hello! When I tried to solve the "Clickjacking" academy labs, I got an error message when tried to see my exploit in the exploit server. The form of the sytle is missing, I got only a ""Resource not found - Academy...

mouse click ignored

Hello, I can't click any button, including installer; It seems like mouse click is ignored :( I'm using macOS high sierra, and burp professional version 2.1.03. Is there any solution for this? Thanks!

JRE Appears to be version 11.0.11-ea

When i start lastest verion of Bupsuite i got this error! https://i.imgur.com/7j7AK3s.png JRE Appears to be version 11.0.11-ea from Debian Burp has not been fully tested on this platform and you may experience...