Bug Reports - Page 41 - Burp Suite User Forum

Burpsuite Pro 8.4 (64-bit linux) doesn't start up properly

I just performed the upgrade to version 8.4 and while it seems that the application starts up, no dashboard/windows are opened. Process list shows Burp running. Need some assistance figuring out what's the issue. So far,...

http/2 stream error on flow control limit exceeded

https://forum.portswigger.net/thread/i-am-unable-to-open-any-https-website-after-updating-to-v2021-8-e9b8b3ac Nothing works for me, It worked for other people but not for me. U using v2022.8.4

Unintended Solution? - Lab: Web shell upload via extension blacklist bypass

The level can be completed by uploading a webshell as a .phtml file. This does not seem to be the intended solution based on the hint and the given solution.

I cannot route traffic from mobile devices to Burp

Hello! I am using iOS 15.6.1 and using the knowlege base article, I cannot route traffic into burp. I also cannot reach the http://burp or burpsuite or 127.0.0.1:8080 I checked the wifi settings on my phone and when I...

Newest Burp Suite Pro Update Issue

Hi, I've been using Burp Suite Pro whithout issue for a few months and just tried to launch Burp Suite Pro (on Windows) but instead of the usual launch sequence, it began an update and then the error: No JVM could be...

Burp Browser doesn't work

Every site returns "Not Found" doesn't matter if intercept is on or off. Is there any way to fix this?

New early-adopters release published Sept 5th 2022 rejects a valid license

The new version published today will not accept my existing valid license. I've tried re-downloading the valid license but I'm getting the same behavior. The error displayed is "The supplied license key was not...

Secure Connection Failed

Hi Team, I am facing secure connection failed issue. I am using burpsuite professional and mozilla latest version. I am not able to intercept any https request.I have already installed CA certificate but still it...

Unable to start browser

Hello, I have problem with burpsuite browser. I’m using kali linux on parallels desktop. https://ibb.co/RSNjs5J

Blind SQLi OOB interaction do not work with collaborator on oastify.com

Hi, when using collaborator for "Lab: Blind SQL injection with out-of-band interaction" it works in Burp, but it is not marked as completed, perhaps becuase "checks" are checking different (older) burp collaborator domain.

Does burp suite store traffic cache?

Hi team, I am using burp suite community for a while, the experiences are really good. However, sometimes I found it behaving very strange. For example, when I capture traffics from my android, a few hosts hit errors...

Web application using Microsoft SignalR/5.0 fails to load through Burp

I'm facing a web application using Microsoft SignalR/5.0, which fails to load correctly via Burp (Professional, v2021.8.3). If I use no proxy or a Squid proxy with the browser, the application loads just fine. It...

Burpsuite active scan changed my table's shape and data

I used burpsuite to do an active scan of my web application and it found vulnerabilities. After the scan was done, one of my tables got messed up: ...

Lab loging account wiener password dos not work

Hello everybody How are you doing? I am working in the sql inject lab, and during my studies, the wiener account stopped to working show "password not correct" message, Could ou please reset password? Best...

Blank browser

I always use the 'Open browser' option. It was working great until I upgrade Burp to 8.2 Community Edition. Now I get blank pages on requests. I can see Burp is catching the requests and I do receive responses but only in...

LAB: SQL injection attack, listing the database contents on non-Oracle databases

After finding the correct table which will be something like users_olvixu, when you do an injection like so: ' UNION SELECT column_name,NULL FROM information_schema.columns WHERE table_name = ' users_olvixu'-- The...

Authentication bypass via OAuth implicit flow - SessionNotFound: invalid_request

Hi, The lab "Authentication bypass via OAuth implicit flow" is not working. After clicking "My account" page loads for few seconds and shows with error: SessionNotFound: invalid_request at Provider.getInteraction...

Solve the Lab: DOM XSS using web messages and JSON.parse without backslashes in the payload.

Hi, when doing the Lab: DOM XSS using web messages and JSON.parse, I constructed a payload (which is: <iframe src="https://lab-id.web-security-academy.net/"...

Web Security Academy - carlos email

Hi, I'm currently doing exercises from the password reset section, I have a feeling that carlos email is not working properly. In a situation where the e-mail for the wiener user is as follows:...

Activation failed with valid subscription

I have a Burp Suite Pro license, however I am now unable to install this license on any new burp installations (e.g. after reinstalling a new VM). I am only using this license for myself as a single user. Even after...