Bug Reports - Page 50 - Burp Suite User Forum

error

My burpsuite can't do anything on M1 The mouse seems to be broken but only burpsuite can't operate

Lab: File path traversal, simple case - Unable to complete the lab exercise

Hi I tried to traverse the file path in the lab exercise "File path traversal, simple case" as directed in the instructions however I am unable to retrieve the contents of /etc/passwd file. I followed the steps provided in...

CA Certificate

When i Use to do something in burp its show me this:- Burp Suite Community Edition CA Certificate Welcome to Burp Suite Community Edition. I am already import in my browser.But when i...

burpsuite_community_macos_arm64_v2022_11_4.dmg gives error "The disk image couldn't be opened - Failed to mount filesystem"

Community v2022-11-4 seems broken for ARM/M1 mac version. I installed v2022-11-3 yesterday without any trouble.

API Rest BURP PRO

We are automating the scan of launch URLs from the API point and we noticed the following behavior. 1 - launch scan API curl -vgw "\n" -X POST 'http://XXX.xxx.xxx.xx:91/APIKEY/v0.1/scan' -d '{"urls":[]}' So far...

Burp Suite Navigation Recorder - Could not parse recorded sequence to JSON

Hi all, After capturing the login sequence with Burp Suite Navigation Recorder and pasting it to "application login" i am getting this error ? any idea ? I tried : 1- removed Burp Suite Navigation Recorder and install...

Not possible to disable "Update Content-Length"

Version: v2022.11.2 build 17582 Verified on two installation. When sending the following request with the "Update Content-Length" disabled, the Content-Length is still updated. POST / HTTP/1.1 Host:...

Bug within Burpsuite menu

when you open burp professional. you have the menu (dashboard target proxy intruder repeater collaborator sequencer decoder comparer logger...) after loading extensions the first section of the menu become "un clickable"...

Labs - File Upload Vulnerabilities - versatile webshell

Hi @burp_fans I stumbled upon an "issue" with the file upload vulnerability labs (e.g. [1], but it is the same for all file upload labs I have tried so far): I manage to upload a webshell with...

Lab: Routing-based SSRF

hi , in the Lab: Routing-based SSRF you asked for the user to delete Carlos whit capital letter . but there is no "Carlos" to delete , only "carlos".

Bug in lab "Inconsistent handling of exceptional input"

Hello, I am currently facing an issue in the "Inconsistent handling of exceptional input" lab. After registering an account, I should be able to see my email address on /my-account page but it's not the case. Also I...

Wrong statement in XSS learning material?

In the last lines of chapter 2 of Stored XSS section (Impact of stored XSS attacks) it says "In contrast, if the XSS is stored, then the user is guaranteed to be logged in at the time they encounter the exploit." Is this...

Burp Collaborator Certificate Issues

Hi, I'd like to raise a very interesting problem. We are currently running a on-prem Collaborator which is only available over our VPN. Everything worked fine until version 2022.05. Then users experienced following...

Burpsuite 2022.11.2 suddenly browser not working

using jre 17.0.5 on kali It worked fine yesterday, suddenly im getting this error on root: "devtools.client.n:refusing to start browser as your configuration does not support running without sandbox" on non root using...

Academy lab do not update status randomly.

Hi, I see a problem with the update of the state of the laboratories that I finished correctly. They are randomly shown as unsolved. It is happening to me in SQLi and JWT attacks. Thank

Achieve release wont install for community edition

Hey I have tried installing the previous versions of Burpsuite community edition and it wont start downloading.This is happening for all the previous releases which contains the Windows(64 bit) version. However the Pro...

BurpSuite Enterprise Unable to perform connection check

Hi team, When I initiate a connection check on BSE, the UI display with error "Unable to perform connection check We were unable to perform a connection check for your site. Please check that your scanning machines are...

Exam Problem

Sorry for writing here. I am in the exam and have done 5 labs. I had a session token of a user and got more permissions by extending the permissions. Then all suddenly my session stopped working and the session token, no...

https://portswigger.net/web-security/sql-injection/examining-the-database/lab-querying-database-version-mysql-microsoft

The lab(Subject line) does not put output after trying multiple payloads even interesting is the fact that the solution provided also does not work as a solution. Have been stuck and here. The lab is : SQL injection attack,...

Cursor pointer not on-point

Burp jar - burpsuite_community_v2020.5/Windows 10 Pro/Open JDK Latest version, In repeater cursor is not following entered chars after 5/6 letters. This is happening only in executable jar version & not in installation...