Bug Reports - Page 55 - Burp Suite User Forum

502 error when site is added in scope

Hello there, I am getting some 502 error anytime i add the site in scope using the embedded chrome browser. As soon i remove the site from scope then all seems to be working but cannot add anything in the scope that i am...

mqtt message loss

Hello, I use Burp Suite Pro 2022.8.4 to intercept MQTT over Websocket. Broker sends "restart" command, the client sends "reply" and closes the connection. Burp often fails to intercept and relay that "reply" message. I...

Request corruption on Repeater when tampering with full URLs in :path header on HTTP2

What I tried to do: On a Repeater request over HTTP2, replace the content of the :path header ( "/example" ) with a full url ( "https://www.google.com/example" ) What I expected to happen: A successful update of the...

session handling rule stops inserting cookies after a while

I had a crawl & audit scan running, that after some time seems to have gotten stuck issuing thousands of identical requests to a single path on the server. The site requires authentication for all access, and I'm using a...

Burp Suite Intruder Page shows a blank white page

I have installed BurpSuite community edition v2022.6.1 on arch linux with dwm-6.2 everything works fine, except the Intruder attack page which doesn't work anymore, no matter what type of attack I choose and regardless of...

Showing "https://portswigger.net/error" page for after clicking academy in home nav tab

labs progress not recording

hello i have asked for labs reset recently, but now after i solved the labs the progress is not updating, still showing 0

Academy doesn't update lab status

Hi, I am currently working on your Academy labs and since ~ 1 hour the "solved" lab status cannot be saved in my progress. The lab itself says "solved", but in the Lab overview and "track your progress" there is no...

[Lab] Lab status not updating after being solved

Hello, I've solved the "User ID controlled by request parameter with data leakage in redirect" several times now, but my account status does not get updated. Neither the lab list page nor the lab description page shows...

Unable to access the labs

I am trying to access the lab but having an error. Apologies, the lab could not be started in a timely manner. Please try again or contact us if the problem persists. I've tried using different browser and cleared...

Server-side template injection with information disclosure via user-supplied objects

the submit solution box on this lab does not work any longer, i can see it used to as some people have completed every lab and would have had to have entered the secret key from the dejango system secret key document, but it...

Burp Browser does not open.

I am running burpsuite on a VM, and it returns an unknown libva error.

Burp Intruder doesn't accept IP address ending in 0

Hello! Today to my chagrine I discovered that Burp Intruder refuses to launch an attack against a host ending in .0, complaining "Invalid target". While this would be the case if it was your run-of-the-mill /24, I'm on a...

Bug when changing the Burp Collaborator Server

Hi, I believe I have found a bug in Burp that leads to the wrong collaborator server being used under certain circumstances. I am using Burp Suite Professional v2022.8.4 with openjdk version "11.0.16" 2022-07-19 on...

Burpsuite Pro 8.4 (64-bit linux) doesn't start up properly

I just performed the upgrade to version 8.4 and while it seems that the application starts up, no dashboard/windows are opened. Process list shows Burp running. Need some assistance figuring out what's the issue. So far,...

http/2 stream error on flow control limit exceeded

https://forum.portswigger.net/thread/i-am-unable-to-open-any-https-website-after-updating-to-v2021-8-e9b8b3ac Nothing works for me, It worked for other people but not for me. U using v2022.8.4

Unintended Solution? - Lab: Web shell upload via extension blacklist bypass

The level can be completed by uploading a webshell as a .phtml file. This does not seem to be the intended solution based on the hint and the given solution.

I cannot route traffic from mobile devices to Burp

Hello! I am using iOS 15.6.1 and using the knowlege base article, I cannot route traffic into burp. I also cannot reach the http://burp or burpsuite or 127.0.0.1:8080 I checked the wifi settings on my phone and when I...

Newest Burp Suite Pro Update Issue

Hi, I've been using Burp Suite Pro whithout issue for a few months and just tried to launch Burp Suite Pro (on Windows) but instead of the usual launch sequence, it began an update and then the error: No JVM could be...

Burp Browser doesn't work

Every site returns "Not Found" doesn't matter if intercept is on or off. Is there any way to fix this?