Bug Reports - Page 3 - Burp Suite User Forum

Free trial version problem

Hello. I have a free trial version of Burp Suite Enterprise edition, but license doesn't work. I activate license 4 days ago.

Thanks for the great web security academy. In this lab: https://portswigger.net/web-security/cross-site-scripting/contexts/lab-some-svg-markup-allowed with an xss payload of alert(1) they lab didn't get marked as...

Scan Freezes at Active Phase 1

Hello, I'm having an issue with the scan functionality on Burp Suite Professional v2020.2.1. The same exact request works with no issues on one of the earlier versions of Burp Suite Professional's scanner, v1.7.37. This...

I cannot find Korean font in a macos

Hello Burp suite I have some problems about setting Korean font in macos When I do web pen testing, a homepage has Korean language. Therefore I need to change Korean font in the Burp suite MISC option. But there is...

The License key is having some issue

The license key on uploading is giving issue

Are Burp Labs down?

Hi, I wanted to learn and train my skills in BurpSuite and was happy to find the Burp Academy. Unfortunately I am not able to access any of the labs as all I get is a 404 response in both Firefox and Chromium on a Kali...

Cannot Access Web Academy

I cannot access Web Academy CSRF lab. error: Not Found The requested item was not found. We apologize for the inconvenience.

Embedded Browser Error

Can someone please help me? I am have the updated version of BurpSuite Community, but I am unable to use BurpSuite's browser nor am I able to use my own. I have run a healthcheck and this is the result: Embedded...

Process starts, no error, GUI failure to launch.

Kali-Linux-2020.4 BareMetal SSD dedicated hard-drive install. No dual boot. Pre-installed burpsuite community edition fails to launch GUI but process IS confirmed running in task manager.

Invalid trial license

Hello Team, I had requested for trial version; the license I downloaded from the portal is invalid. Account: mshankarpani@quinstreet.com Thanks, Madhu

Enterprise - Scan configuration deletion of active config causes an inoperable site

If you delete a scan configuration that is currently associated with a site and a scan is running for that site, then cancel the scan, you can no longer edit the site to change the configurations. I am getting this...

Hi, I think that I found a flaw.

Hi, I think that I found a flaw on https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-cache-key-injection lab, you can solve the lab just by adding Pragma:...

Cannot reproduce certain finding on Burp Collaborator

Hello. I was doing a Burp Scan the other day and the report gave me an "External Service Interaction (DNS)" finding. The collaborator payload was submitted in the SSL SNI and the HTTP Host header. I checked with Logger++...

Burp - Target - Actively scan this host times out

Hello, Starting a new scan from dashboard with Crawl or Crawl and Audit works fine. However If I go to target and use "Actively scan this host" it will time out after some requests. What can I do to mitigate this? Tried...

HTTP Mock extension can't be loaded

HTTP Mock extension loading with a error: java.util.regex.PatternSyntaxException: Unexpected internal error near index 28 ^/Dashboard/GetRepositories\ at java.base/java.util.regex.Pattern.error(Pattern.java:2029) at...

Swagger JSON file taking 20+ hours

Scanning one of our APIs. I read that if you point it at your swagger json definition ( OAS ) file that it would find all the endpoints. However my scan has now taken over 20 hours and is still going. We only have one...

Repeater requests not showing in Sitemap

Hello all, In my sitemap I have a spidered log for www.domain.com/folder/file.json with a 403 response. I sent this request to repeater, removed some headers, and file.json was succesfully returned to me. However, the...

download

when I go through the setup wizard it does nothing. I click finish and it doesn't open the file I can't even find the file all I can find is the file that starts the setup wizard

NullPointerException when opening existing project

My OS crashed with Burp and when trying to load my Burp project, I get: "Failed to create Burp project: NullPointerException". Anything I can try to recover it?

HTTPRQ Lab - Exploiting HTTP request smuggling to deliver reflected XSS

Hey guys, I hope you're all well today. This seems to be a pretty interesting bug! I have no idea what is going on, but while trying to solve this lab, something seems to have broken in the back-end, and now every time I...