Bug Reports - Burp Suite User Forum

Ldd error after upgrading to 2020.7

Hello guys, after the update 2020.7 my Embedded browser check failed. "Aborting checks due to errors. Could not determine dependencies as an error occurred executing ldd" No more details. Linux XXXXXX...

iOS 13 + Burp SSL Certs Not Able to be Fully Trusted

I've followed the appropriate steps to fully trust the burp cert, but as of iOS 13 this does not work and HTTPS requests fail. Looking at iOS 13 release notes, I found this: https://support.apple.com/en-us/HT210176 -- I...

Burp certificate not working with Burp 1.7

Burp certificate not working with Burp 1.7 butis working with latest versions.

Embedded browser initialization failed

Hi I am having an issue with the Response/Render feature of the embedded browser. When I click on "Render" in the "Response" tab I receive the following message "Embedded browser initialization failed" I also ran...

OPEN API PARSER NOT Working with OpenAPI Specification version 3.0.

OPEN API PARSER NOT Working with OpenAPI Specification version 3.0. When trying to parse/load the YAML or JSON from the Swagger Pets store example, The parser responds at the bottom with 'The OpenAPI specification...

Sorting arrows not showing in Dark Theme

Hello, I've started to use the Darcula/Dark Theme, and I've noticed that it looks like sorting arrows in tools such as Intruder are not being displayed properly (e.g, when double clicking "Length" on an Intruder attack...

either live passive crawl or live audit keep session active

During a recent web app test I found a bug in the web app where I could replay the request after logging out. However, further testing and working with the developers where they could watch the backend session id's we found...

Having issues opening Burp - started today

Hello, I try to open Burp Professional and the logo comes up then disappears. Nothing happens. I have tried to re-install, even the older versions and the same issue is happening. Please advise.

Burp repeter - cant build from scratch

When I build a Request from scratch I got timeout in response meanwhile If I take the request from proxy sent to repeater I got 200 OK. Example Request: GET /success.txt HTTP/1.1 Host:...

java.net.SocketException: Connection reset

I am able to reach the site I am testing over HTTPS via browser directly, but when I use Burp to connect I see two errors in the Alerts tab: java.net.SocketException: Connection reset Connection reset This happens...

v2020.7 Embedded Browser Doesn't Launch on Parrot

Hello, I just wanted to report that the embedded browser in 2020.7 does not launch with a default Parrot OS (https://parrotlinux.org/) configuration. Attempts to launch it return "net.portswigger.devtools.client.a: Refusing...

Installing Burp Enterprise in PostgreSql

Hi, There is any limitation to use Burp Enterprise and Azure Database for PostgreSql? I ask because I am trying to install Burp Enterprise (in Linux 64 bit) using Azure Database for Postgre and the Burp installation...

Lab: Stored XSS into anchor href attribute with double quotes HTML-encoded

Hi! The lab does not register the fact that XSS has executed and means I cannot complete the challenge. javascript:alert(document.domain) successfully pops up however the website does not register this fact, which...

license key

i reinstalled burp enterprise and now its not accepting same license key file.

Burp Not Capturing All HTTP Traffic

Hi, I try to capture HTTP traffic from a desktop app. I set Burp as a proxy on 8081 port in different client. But Burp not capturing all traffics. I am watching 8081 port with tcpdump, i am seeing the requests but Burp can...

Session Handling Rules doesn't work

Hi, I founded bug with session handling rules. I wrote custom rules to rewrite cookies if session is not valid. But when I restart my burp app, this rules doesn't work. To fix this problem I would go to my rules and open...

ASP ViewState does not show up

I have an issue with the ViewState Tab not showing up in the Request/Response view I can see the hidden form elements and on a POST request I can see the Parameters being sent, but the Tab is not showing up. Here is a...

Error on scanning with Burp suite Professional v2020.6

Hi, after upgrading to v2020.6 I see the following issues: by selecting to scan one website ( default options, right click on the URL scan, 'Crawl and audit' ) the following will happen in most of the cases: 1. Scan...

Lab: Stored XSS into onclick event with angle brackets and double quotes HTML-encoded and single quotes and backslash escaped

I followed the instructions after being able to make several alert boxes. Instead of the foo URL though I tried some different ones. For some reason, it is not being marked as complete. Is it broken right now?

Lab: SQL injection attack, querying the database type and version on MySQL and Microsoft

The solution doesn't work, is there another way or is there really an error?