Bug Reports - Page 120 - Burp Suite User Forum

Error starting scan on Burp: Not all seed URLs are in scope

Hi, We're running Burp Suite Enterprise v1.0.15beta and use the HTTP API to register sites for scanning during nightly builds. The sites are registered based on endpoints extracted from swagger files (OpenAPI) and...

Burp Extensions

Hi, it's just a question and also a bug reports. I've noticed that in Burp v2 some api for extension were changed. and i've noticed this in Active scans phases. Many extension active scans fail to execute. Is there...

SSL hardware certificate library cannot be loaded

To pentest applications using Belgian eID smart card identification and Burp Suite Pro, we import the Client SSL Certificate under the 'User Options'-tab > 'SSL'-tab by clicking the 'Add' button and selecting 'Hardware token...

Burp Pro 2.0.05beta Dynamic analysis injected values do not match reported value reaching sink

This is being reported as Client-side JSON injection (DOM-based). The value injected does not match the value that is reported as reaching the sink. Dynamic analysis Data is read from input.value and passed to...

An internal error occurred while launching Burpsuite jar and exe on windows machine

An internal error occurred while launching Burpsuite jar and exe on windows machine even i tried re downloading but not working. Burpsuite 1.7.35 is working but not 2.1.*

repeater not work for https

intercept on,get https requests(A),send to repeater(B),in [Repeater] click [go],response status code:411.Now,in [Proxy] click [Forward],its work,in [HTTP history] response status code :200.Last,in [Repeater] click [Copy...

[Beta v2.0.03beta] Exporting report - report title cache not working

Hi, A small bug it seems. When creating a report, in the reporting wizard window, when customising the report title and entering a title starting with the same letters/words that you used for previous reports, you will...

REST API Does Not Set Content-Type Header When Invoking Callback

When Burp's REST API issues a PUT request to the callback supplied to /scan, Burp does not set the Content-Type header. This causes issues when trying to integrate various tooling, such as ASP.NET Core 2.0. The platform...

subject

localhost - worker process - not in burp - MAC OS

I currently use Chrome with SwitchySharp extension for Proxy or firefox with proxysetting into firefox. Everytime I try to catch traffic comming from localhost, it does not work. I must add an host to my etc/host to test...

second listening port

lsof, netcat, telnet, google and your support forum haven't been me friends so far. Maybe I missed an announcement... why is burp 2.x opening a second listening port? I noticed that burp is not only listening to port...

Stack trace when loading extensions

Hi there, We've noticed a strange Stack trace when an extension is loaded while another extension is already loaded. In this case I had the UploadScanner extension already loaded and then tried to load the Stepper...

Burp Enterprise and Professional scan results are not matching

Hello, I performed scanning of web application using Burp Professional and Burp Enterprise separately. Currently the application is not available for scan outside the client environment. Burp Professional Version:...

Bug in Choose File button of Darcula Theme

Hi Burp, Using the new darcula theme of Burp pro, it seems that when being prompt for either: - Temporary project - New project on disk - Open existing project the "Choose file" buttons of that window are not...

Java Extender API IScanQueueItem not working as expected in 2.1

Hi, I've noticed the following items in IScanQueueItem are not functioning as expected in 2.1 compared to 1.7. getPercentageComplete In 1.7 this returns the percentage complete of the scan, in 2.1 it always returns...

Broken pipe (Write failed) problem :(

Hello every one! Im have this issue every time if im do scanning on my PC, im set 15 - 25 Threads to every site im check, Im try to scan 2 sites parallel. Please help!

Browser response not visible in Vulnerable items if XSS

I'm on Mac OS Mojave (10.14) and if I try to render the response of a vulnerable page to XSS it will not render and will crash the embedded browse. Embedded browser checks are fine.

Low quality icons in Burp 2.1 Community Edition

Hi, Just downloaded and installed the latest 2.1 Community Edition and noticed the icons in Burp are very pixelated. Screenshots: https://imgur.com/a/lqDiCop OS: Win10 1803 (17134.829)

MR_KEFIR

???????????, ? ?? ????? ?????? ?????? ? ? ?????? ??????????.

Burp suite on iOS 12 not working

Hello, I'm trying to make an interception with my iOS device, I followed the tutorial here: https://support.portswigger.net/customer/portal/articles/1841108-configuring-an-ios-device-to-work-with-burp The web pages...