Bug Reports - Page 46 - Burp Suite User Forum

Intruder 'Copy Attack Config' menu options is broken and unselectable.

STR: 1. Open burp 2. Send request to the Intruder tab 3. In then top menu select Intruder -> Copy Attack Config -> With/Without Payload positions 4. Observe that the menu items are not selectable and broken. I fuzz a...

Unable to log data in headless mode

Using the follow command, I expect to populate intercepted network traffic within the file specific in the system config file, but it does not populate in headless mode. java -jar -Djava.awt.headless=true...

Adding URL to scope bug

Hi, Just downloaded the latest version as of this time, I noticed when adding a URL to the scope, it doesn't get recognized anymore, hence all filters e.g., in Sitemap "Show only in-scope items" will not work. You'll only...

the burp Collaborator server used by the burp Collaborator client is not reachable

An HTTPS connection to the capture server at ck0vpewy7kl5t59tkxbxxe56axgautebie7.oastify.com could not be opened. Communication using other protocols did work; possibly a firewall is preventing this connection. No...

Burp Downgraded from 2022.5.1 to 2022.3.9 , Wtf?

Why did burp suite just downgrade itself from 2022.5.1 to 2022.3.9 ?

Scrolling with Apple Magic Mouse acts as dbl click,

Hello All. I am using OS Monterey 12.3 with Burp v2021.10.3. I am also using an apple magic mouse. When I scroll up and down the HTTP history list burp is repeatedly opening requests as if I had double clicked on them....

Logging in to PortSwigger using the Burp Chromium Browser

Recently discovered (I was able to log in just fine previously), when I try to log into PortSwigger in the chromium browser, I get an anti-forgery error. "The anti forgery check failed. This could happen if your session...

Can't Access Extensibility API documentation

Hi, I was trying to access the Burpsuite Extensibility Documnetation but each time I am getting redirected to homepage of extender(https://portswigger.net/burp/extender). I can open...

HTTP/2 request smuggling via CRLF injection not working

I'm dissapointed with the news labs. Exhausted of trying to follow the Solutions and waste a lot of time trying to get a solved lab. I don't know whether someone else has this same trouble, but I think you haven't test...

Lab: Lab not working: DOM XSS in document.write sink using source location.search inside a select element

This lab doesn't work. Text injected doesn't display.

wrong linefeed under macOS is breaking the Accessibility APIs

the linefeed under macOS should be `\n`. Burp seems to be enforcing the Windows linefeed, `\r\n`. that breaks the macOS Accessibility as it returns a length of 2 characters while `\r\n\` is actually one character. is...

under macOS, keyboard shortcuts using `option` don't work in Burp's text areas

hello again. because of the Accessibility issues i'm encountering with Burp that i've shared in another post (Windows linefeed rather than macOS linefeed), i'm trying to achieve what i want to do through key remappings....

Lab: H2.CL request smuggling not solved

Hi I'm having trouble getting the mentioned lab to be marked as solved. This is my request: https://snipboard.io/c4Ms86.jpg I've also disabled all plugins and tried it with and without the integrated browser....

3 SQLI labs are not working

Hello, This is a bug report about your labs, NOT Burp Suite. I posted it here, because this is the only forum I found. The labs listed below are not working. I even copied and pasted the answers from the solution...

Proxy is extremly slow, active scan failed

Hi, I using Burp Pro but since last week is proxy extremly slow and sometimes didnt load page properl. Error Faild to connect. But if I tryed other browser (non proxy through to burp) them page load fast and...

Crawl & audit very slow, never finishes (Burp pro 2020.9)

I am pretty new to Burp pro, so I don't have a lot of experience to know whether this is expected behavior or not. I am hoping some more experience users can give me some insight here... I am testing a wordpress based...

Burp suite is showing protocol error

when i tried using the lab for sqli the burp suite keep throwing me protocol error, i tried that by using firefox and the lab is working and didn't gave me an error. please resolve this issue.

Error importing certificate in chrome -The Private Key for this Client Certificate is missing or invalid

I am having problems with chrome importing the burpsuite certificate I am getting this error: Certificate Import Error The Private Key for this Client Certificate is missing or invalid This only happens to me after a...

Error in first lab task

I keep getting the response "Missing parameter" when uploading a file. It does not seem to matter if the file is .jpg or .php I have tried through Burp and simply directly.... Am I doing something wrong?

Labs: Web cache poisoning not solved

I can successfully exploit myself but non of the labs get marked as solved. I've tried the first three web cache poisoning labs.