Bug Reports - Page 44 - Burp Suite User Forum

Host header fuzzing does not work

Hi! Using Burp Suite Pro v2023.1.3 Using Intruder to fuzz Host header value with UTF-8 chars, however in the results screen (Request) see that I'm sending only original header value (confirmed via same server response...

Username enumeration via response timing (Authentication) -> X-Forwarded-For

Hello, While working on username enumeration via response timing lab, I used HTTP header "X-Forwarded-For" to spoof my IP address in order to bypass the IP-based brute-force protection with Repeater but I kept getting...

Blocked by Cloudflare Gateway

Hello, I was starting the "Lab: Basic password reset poisoning". I clicked on the "Go to exploit server" button and was greeted with a black screen and the words "Access restricted This site is blocked. Please...

Scanner appears to audit URL received in 302 response

Greetings, I am using V2023.1.2 on an engagement and am having strange behavior using Scanner. I have set the scanner to audit only and provided a single URL to audit. The audit performs some number of requests to the...

Kerberos

When I try to use the Kerberos Authentication I get the message: Connected to port 88, but failed to contact Kerberos service: No LoginModule found for com.sun.security.auth.module.Krb5LoginModule Can you help?

Mixed results in intruder attack

Hi, Iam using Burp Pro version 2023.2.1 19050 (Early Adopter). I have found that when I have two intruder attacks running at the same time (using same resource pool), I get mixed results from both of these intruder...

Burp Pro 2023.1.2 does not honor disabling HTTP2

As of version 2023.1.2, the tool does not honor `Project Options -> HTTP -> HTTP/2` settings allowing only HTTP/2 requests if server supports it. Version 2022.12.7 works as expected Thanks for any response bodik

Issue activity tab doesn't list all issues detected in audit items tab

Burp Pro: v2012.1.2 After starting a scan for a specific target, approximately 20K requests and few hours later, if we check Audit Items tab for this specific scan, we can see quite a few issues in "Issues"...

Can no longer intercept Iphone requests (Apps and browsers) : 403 remote host terminated the handshake

I started having this issue 4 days ago, before that i had no trouble intercept requests from my iPhone. Device: - Iphone X: with Full Trust CA enabled - Burpsuite install on both MacOS and Windows machine - Burpsuite...

Burp 2023.1.2 ignoring intruder payload positions set (or choosing its own?)

Here is the intruder position i have set for port academy lab: GET /filter?category=Gifts HTTP/1.1 Host: 0a7b002803336d41c08ad10900000088.web-security-academy.net Cookie:...

Dominvader removes CSP even if the plugin is turned off

Hi Portswigger Team, I have a weird behavior in Burp Suite Pro v2023.1.2 Build 18945. When I am using the integrated chromium the dominvader plugin removes the CSP even though dominvader itself and prototype pollution is...

Strange "correct" solution in PHP Deserialization vuln exercise

Hi, I'm refering to a challenge at https://portswigger.net/web-security/deserialization/exploiting/lab-deserialization-arbitrary-object-injection-in-php. It's strange because the payload I thought should work didn't? (or...

Lab: OAuth account hijacking via redirect_uri

The username and password detailed in the lab description wiener:peter don't seem to work for this lab. I tried many times using the password specified but I still get "Invalid username/email or password." Is this a...

The "CORS vulnerability with basic origin reflection" lab seems broken

Hello! Is the "CORS vulnerability with basic origin reflection" lab currently working? I have tried many variations of the solution and none of them successfully complete the lab

External links in description fields of API definition

I am trying to scan an API with Burp Suite Enterprise and I'm getting an error: "Skipping API definition. The data in the definition file is malformed and cannot be read by Burp Scanner. Cause Burp Scanner needs to be...

DOM XSS Flagged - Burp Enterprise

Hi, I have had a few instances of DOM XSS flagged but I'm thinking its a FP: function gBU() { var protocol = window.location.protocol; var port = window.location.port; var host =...

Consistent Burp hangs when 'requesting items again' during the intruder scan.

Burp Pro v2023.1.2 (and previous versions) installed on Mac (not a standalone JAR) keeps hanging and has to be forcefully closed, if the user chooses to 'request items again' for the intruder scan which is still running.

Labs not loading

I click the "Access the lab" button on https://portswigger.net/web-security/sql-injection/lab-retrieve-hidden-data and the resulting page (https://0a83005204743cb7c065138600cf008d.web-security-academy.net/) does not load the...

Not able to complete - https://portswigger.net/web-security/xxe/blind/lab-xxe-with-data-retrieval-via-error-messages

Hello, I get the below error. "XML parser exited with error: org.xml.sax.SAXParseException; lineNumber: 1; columnNumber: 108; Premature end of file." Here are my payloads. Exploit server: <!ENTITY % file SYSTEM...

ArrayIndexOutOfBoundsException

Burp starts to randomly fail, Proxy Interception will always display an old request that was long processed and that won't go away, even if I turn interception off, send a couple of requests and turn it on again. Burp is...