Bug Reports - Page 33 - Burp Suite User Forum

On huge targets, sitemap stops working reliably

I don't know the exact conditions but often some paths from the passive crawl are missing from sitemap. They're present in the proxy tab but never added to the sitemap. The problem isn't new and I know people who struggle...

Latest Install Wipes BurpSuitePro.vmoptions

Should have the ability to preserve your settings. If not, at least back the file up to BurpSuitePro.vmoptions.backup, .old or similar.

sni problem

after the last update I have in my repeater the option for sni override whether I turn it on/off in repeater or on/off settings I got many error connections such as 403 for urls that worked before the update and also are...

Unable to launch Burp's built-in browser

Hi, I am currently experiencing an issue with Burp's built-in browser on Burp Suite Professional v2023.7.2. When clicking on 'Open Browser', it is unresponsive and no browser is launched. I have launched the health check...

Lab: Basic clickjacking with CSRF token protection

This simple Lab does not complete even though I followed the right steps and does not reset to original state even after waiting for 20 mins. It wasted half my day's time. Please fix the bug(if any) related to this lab....

Expired cookies session

Hi all, I am still learning, so correct me if iam wrong. I reported the 'bug', but it was dissmissed as informative. I logged in into some account and in BURP I had request with cookie and parameter in it 'session_token'. I...

Checksum Mismatch

Hello All, I am having trouble with validating my download of burp suite Professional / Community 2023.7.2. My checksums do not match what the burp suite website is showing. What I am missing? Burp Suite...

Hostname Resolution ignored if SOCKS Proxy in use

Observed behavior: The Hostname Resolution section under Project options -> Connections is ignored if SOCKS Proxy is in use, with "Do DNS lookups over SOCKS proxy" enabled. Instead, Burp resolves the hostname via the...

Hostname resolution overrides not working properly in Burp Suite

When I enable the "Hostname resolution overrides" option in Burp Suite and change the hostname, it works as expected and overrides the ip from the original hostname. However, when I uncheck the box to disable the option, it...

network account login fails after latest update

Hello, After updating to Burp Suite Enterprise Edition v2023.7.1, we can no longer authenticate to Burp Enterprise manager/web server with our network credentials. Local accounts can log in successfully. I am able to...

Intruder attack result

Hi, I would like to report a problem with sorting results in intruder. Currently, trying to sort the results by the size of the response does not always sort all the results (after moving the results, I see that some results...

CSRF vulnerability with no defenses lab

I've done everything I could to solve this lab, even used the official solution but everytime I store and view the exploit I get the message "Resource not found - Academy Exploit Server"

False Positive "Content type incorrectly stated"

Hello, It seems that Burp doesn't recognize ttf font and keeps flagging it with Content type incorrectly stated. Is it possible to solve this problem please? Any ticket already created? Thank you for your...

Content Type incorrectly stated

The response states that the content type is application/font-woff2. However, it actually appears to contain unrecognized content. If the URL path can be manipulated to end with ".html", the following browsers may interpret...

In the proxy history and logger history, if you click on the picture burp will freeze

In the proxy history and logger history, if you click on the picture, Burp will freeze even though it is only 8kb, but the 1.4mb js file will not freeze. I guess it is because the picture cannot be correctly processed into a...

Repeater: Can't switch protocol from HTTPS to HTTP: "HTTP/2 is currently only supported over TLS"

Repeater won't allow to switch protocol from HTTPS to HTTP ("Configure target details" from upper left pencil icon -> uncheck "HTTPS") when the HTTP request is HTTP/2. It will show an error on the bottom: "HTTP/2 is...

Resource Pools Settings not Saved in Project Settings File

Summary: The resource pools under Settings->Project->Tasks are not saved in Project Settings, despite being identified as a project settings area. Use Case: I am attempting to save a project file and share it with...

IP of targets in the logger resolve/change dynamically

With Burp Pro (v2022.12.6) the target IP can be shown in the included Logger function. If the IP of the target changes (e.g. By setting a different IP in the settings, network, connections, hostname resolution overrides)...

burp not connecting to internet

all requests in burp i am getting timed out . --------------------------------------------------------------------------------------------------------- SYSTEM...

Mark as complete not showing up, in firefox or chromium.

Hi, I want to mark all the learning materials from SQL Injection Path as complete. But the checkbox is not present in the "Track your progress" section, either on firefox or chromium. Is this on my side ? Thanks !