Bug Reports - Page 110 - Burp Suite User Forum

Different scan ID from REST vs GraphQL API

If I initiate a scan using Burp POST REST API, I see even number (scan / task_id) as a part of HTTP response location header but if I initiate a scan using GraphQL API, I see odd number (and wrong scan id) in JSON response.

Missing PHP Code Injection Detection

Hello, I'm using Burp Pro 2020.5 and I have a PHP Code Injection vulnerability on a parameter name (both on GET and POST). The Code Injection does not work on the parameter value. Even if the "Parameter Name" insertion...

corrupted project files

Burp Suite Professional v2020.5.1 on Windows I previously ran Burp in a Kali linux VM and never had an issue with corrupted project files. Recently using a project I've had to fix corruption just about every time I...

Unable to scan all Urls of site map at once

Hi, I am using Burp Suite Professional 2.1.7. I browsed all urls of a website they were displayed in target site map then i added the host to scope. After clicking on the main url of website, if i scan it through audit and...

Response Times in Lab "Username enumeration via response timing"

Hello the response times when "bruteforcing" the lab "Username enumeration via response timing" are not clear. I did run the "search" for the username seven times, and I don't get a clear result, which user the...

Burpsuite appears to have texts vanished when being selected

Hi, I'm having an issue that Burpsuite acting very weird, since i select a small text range or select all, some parts of texts gone missing in text field of Repeater. I don't know if this is Burp's issue or JDK itself. My...

Problem with updating / installing BURP Community Edition 2020.5.1 on Windows 10

Hi, I had a problem with up updating my BURP to newest version, so I tried to uninstall and install it again, but in both cases wizard tries to start and newer fires installation process. I've also tried to running JAR...

general field editing bugs

Hello, starting with the version before the latest (2020.4 or even earlier), editing request fields under Params and editing request body under Raw loses sync with the cursor. In particular, pressing the End key on the...

Look and feel changes dramatically between Java 8 and Java 13

Hey, with the latest release you discontinued support for Java 8. However, the look and feel of Burp in Java 13 is really different and not nice to work with. Did you notice any differences during your testing?

I have seen some weird 404 bug when trying to mention someone in comment with @.

I just putting it here but don't know if it will work.

Rsyntaxtextarea

Hi there Burp Team Although Burp 2020.2.1 fixed the issue, where Rsyntaxtextare couldn't be used anymore by extensions (introduced with 2020 I think), the following problem still exists... When a extension is loaded after...

BurpSuite in Windows

My burpsuit in Windows acting weird. I updated to the newest version. Not sure what happened. I wonder if portswigger acknowledged this issue. https://youtu.be/97WeHRYs5No

The Burp CERT seems does not work on any browser!

The Burp CERT seems does not work on any browser! I have Windows 10 pro with burp installed. I install the certificate in both Firefox 77.0.1 (64-bit) & Chrome Version 83.0.4103.97 (Official Build) (64-bit). I set the...

THAI characters not displayed correctly in the Burp Suite

Dear Burp Proxy support team, I tried to using burp with the website contains Thai characters on windows 10. However, in my Burp Suite, Thai characters are only displayed as square. I already tried to configure Burp Suite...

GTK theme not rendering correctly

Hello, first of all, sorry if I categorized it wrong but I feel it is a bug. Secondly, I searched through the forum and did not see any similar problems. Description of the problem: Anytime I use GTK+ theme and run...

Web cache poisoning with an unkeyed header LAB issue

Hi I couldn't get this lab to work for me, so I viewed the solution and followed it to the letter. It's what I had already been doing. However, the X-cache header is always 'miss', even after many many tries. There's...

HTTP Response Times Absent for 401 and 407 Response Codes

It appears that Burp records and prints response times in Intruder and Repeater for all HTTP response codes with the exception of 401 and 407 responses.

2020.5 update acting weird (CPU or RAM usage, depending on the project)

After updating, I opened my 250MiB project file (last used with 2020.4.1) and Burp started using 100% CPU on both of the cores that I assigned to the project VM. The whole system was a bit slow but both it and Burp were...

ca certificate

I am attempting to install the CA Cert for Firefox via the link found here: https://support.portswigger.net/customer/portal/articles/1783087-Installing_Installing%20CA%20Certificate%20-%20FF.html Which is:...

Burp Glitches on addidional screen.

Dear, MY setup is: MSI P65 with RTX 2060, with fully updated drivers and windows. When im using burp on external monitor it glitches. How can i send you a screenshot and logs form this?