Bug Reports - Page 40 - Burp Suite User Forum

Cannot close application or save settings after loading project settings

But Suite Professional Version 2023.3.5 on Mac M1 w/ Ventura 13.3.1 Burp behaves normally until I load Project settings from a saved JSON file. Then I can no longer quit the application. I get the prompt to confirm...

Cross-domain crawling: another port is ignored even when added to the scope

Imagine we have a webapp named `domain.com` with: ``` <a href="http://domain.com/">part 80</a><br> <a href="http://domain.com:81/">part 81</a><br> <a href="http://sub.domain.com/">sub part 80</a><br> <a...

BURP Requests

when I use intruder or scanner, my lab stops working, the server does not respond

burp browser

Receiving timeouts whenever I attempt to load a page in the browser. I am unable to access the web academy labs.

Activation error

I have had problems with my operating system. Therefore, I installed the burp suite several times. How could I remove on all computers to activate burp suite pro.

Burpsuite not completing the audit

I am using burpsuite professional latest trial version. When I try to scan a website developed with Angular, it seems the burp not finishing the audit. The request count is not increasing, it does not show any estimated time...

Chromium in Burpsuite Pro 2023.4.1-20122 constantly crashing on macOS 13.2.1 (Intel Processor)

My copy of Burpsuite Pro on macOS 13.2.1 updated to 2023.4.1-20122 this morning and ever since I have been having constant crashes in Chromium.

Match and Replace (User-Agent) Not Working v2023.1.2

I'm trying to spoof my user-agent to access the website snapchat.com, i've set the match and replace rule as follows: Type: Request Header Match: ^User-Agent.*$ Replace: User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64;...

Web cache poisoning through ambiguous request lab

Hello, I've found that someone else had the same problem with this lab a while back. As soon as I introduce a second Host header I get an error - 504 Gateway Timeout. I've looked at the video solution to see if I am doing...

Javascript Not rendering

Hello Team, When proxying through burp the webpage isn't rendering any of the javascript. This results in most of the significant features of the page remaining unloaded. When I remove the proxy everything loads...

Montoya api.intruder().sendToIntruder() no insertion points

Hey, I've noticed in Burp v2023.4.1-20122 that api.intruder().sendToIntruder() does not automatically add insertion points. If I revert to Burp 3.3-20066 the insertion points work fine.

helpers indexOf doesn't seem to be working as expected.

(reposting as I neglected to put this in bug reports the first time) I'm working with https://github.com/PortSwigger/java-deserializer I have a stream of bytes in a request that should be a serialized java...

Academy - CSRF with token is duplicate or token tied to non-session cookie

Hi, I was just trying to solve the Labs for the CSRF-Challenges, but for some reason, I always got the error 'Invalid CSRF-Token', even though I submited the exact solution that is provided to the Lab. When I just tried to...

Embedded Browser Behaving Strangely - Crashing, Wont Connect to Certain Sites

I seem to have corrupted the embedded browser somehow. I get lots of browser crashes. I did install react dev tools - maybe thet borked it? I can't seem to fix it. I tried uninstalling Burp and re-installing, no luck. The...

Burp Chromium Browser Stops Working

After 15 minutes of using Burp's Chromium browser, including on sites where the pages have almost no content, no javascript and no css, when I alt-tab away from Chromium to Burp, I am unable to get back to Chromium. I have...

Unable to Start Brup Suite Pro

I recently updated Burp Suite Pro to v2023.3.2 and can no longer execute Burp. I run a Kali Linux VM (latest iteration, fully patched) on a MacBook Pro M1. Up till now, I was successfully using openjdk 17.0.6 2023-01-17;...

Bug during the export process from Burp to Qualys using the Qualys Extention

Hi, there is a bug during the export process of the findings from Burp to Qualys Platform. When I click on a finding in Burp (single or multiple - is the same) and send to Qualys, the extension correctly sends it to...

burp selection text collapse after the request is sent

I am using Burp community edition and while using it to solve SQL labs and trying different payloads I was constantly using the selected text section in repeater tab and after trying some payloads I clicked on apply...

Charset problem in intruder

I am testing an app which, in the app, some http requests contains Turkish characters. When i send the request to the repeater there is no problem. But if i send it to intruder i am facing with charset problems. On...

Tengo problema en el navegador de burn..

No puedo realizar ningún laboratorio porque al ingresar la URL de postswigger, me muestra URL no segura, tu conexión con este sitio o es segura. Luego el certificado no es válido. Pero en el Google Chrome si se puede abrir...