Bug Reports - Page 127 - Burp Suite User Forum

Excluded scanner issue still showing up in report

Using 1.7.30 Minor thing here... I excluded a bunch of individual scan issues and ran a scan. In the final results, I still had "Python code injection" showing up in the results of issue types, even though it was excluded.

Intruder not starting a saved attack

Hi All I have been running an intruder attack and saving periodically and restarting without issues. However following a necessary save, reboot and resume i have been unable to get intruder to successfully open the saved...

Issue type vs Issue name uniqueness in scanner XML output

Hi team, I'm working on the Burp parser for Dradis (http://dradisframework.org) and one of our users has reported an issue with the way two different findings are reported under the same Issue type number. It seems...

Burp Suite generates "weak ephemeral Diffie-Hellman key" error with Firefox Developer Edition

I've been using Burp Suite with Firefox Developer Edition, but as of today, I cannot make HTTPS connections when using Burp Suite as a proxy. I now get the following error message: An error occurred during a connection to...

Burp Intruder Missing Delimiter

Hi, I have seen an unexpected behaviour in Burp when using Intruder and fuzz points. Within the Intruder you can define fuzz points via the § character, however, you don't have to use two of them. If only one § is used,...

Bug in Scanner Issue Activity

In my current project the greatest ID is 2634. At some point burp decided to continue the counting from around 1000 and I don't know whether it overwrites my existing vulnerabilities. This behavior has been noticed only on...

Burp API - IContextMenuInvocation - Modified request/response access/hinting

In the Burp extender API when retrieving the selected messages from the proxy history, I don't see any way to know if the selection occurs into a modified response/request panel or the original one....

Encounter blank screen when installing burpsuite in Kali Linux

Hi, The installation screen was blank when I try to install burpsuite_community_linux_v1_7_29.sh in Kali Linux. Please advice. Thank you

Settings not saved in project

I can create a new project and change the options under scanner -> options -> active scanner optimization to Thorough and Normal. However, after closing the project and opening it again, these options are not saved and...

Unable to use higher unicode characters

I was unable to use higher unicode characters, such as russian letters, in repeter and proxy. I can't even edit POST body with content type application/json; charset=utf-8 Letters get substituted with letters with low...

Low: Typo in Advisory - HSTS Misconfig

Social mistyped - "If there is no HTTP server, an attacker in the same network could simulate a HTTP server and motivate the user to click on a prepared URL by a scoial engineering attack."

Cannot download big files.

Hi! I cannot download any big files through burp proxy. There is no cert installation mistake because I tried this on so many other employees devices too. There are no ssl errors too because a file smaller than 4 mb gets...

Burp 1.7.29 fails to create a project

BurpSuite Pro fails to create a new project on a updated Kali 2017.3. The error message in the GUI is "Failed to create Burp project: ExceptionInInitializeError" root@kali:/opt# java -version openjdk version...

URLs in target scope converted to lower case

When I add a URL like http://example.org/Dealer/A00123 to target scope it is converted to http://example.org/dealer/a00123. If I add it by 'Add to scope' in site map it works as expected but editing in scope tab converts...

BApp Store Install hanging 1.7.28

The install of new extensions is hanging after upgrading from 1.7.27 to 1.7.28.

Memory overflow

Hi Guys. My Burp Pro always will be terminated by my kali linux, because it uses more then 4 GiB memory. I use 1.7.28, but the previous version (27) does the same thing. I run it from terminal like this: java -Xmx1g...

Freeze when changing issues severity

Hello, I am experiencing freeze with BurpPro. This happens when I try to change the severity of a SQL injection ScanIssue to FP. After, UI don't respond, Burp doesn't use CPU or change memory allocation. When launched...

Burp 1.7.28 does not load licenses

Hi there, Yesterday i upgraded BUTP suite PRO to 1.7.28 (from 1.7.27). The 1.7.28 could not recognize the license from 1.7.27 and has been asking for a new license. However, loading a license file endS in license not...

'--project-file' Pauses Scanner

I made a post a week ago (here: https://support.portswigger.net/customer/portal/questions/17180858-save-project-file-with-burp-api) about automatically saving the project file. I was told about the --project-file...

Drop down menu bug

In some cases, when burp presents a drop down menu with previous used values (for example when filling in the Fixed time trottle in the options of intruder), the white "block" which is an empty drop down menu does not...