Bug Reports - Page 62 - Burp Suite User Forum

UI bug in Intruder -> Payload Options[Simple list]

Dear support team, while dealing with the labs I spotted a UI bug in the Simple list -> Payload Options in the Burpsuite's Intruder component (Community Edition v2022.3.8). Steps to reproduce: 1) Create a simple list...

erro na hora de navegar

Boa noite estou usando burp suite comunity editon 2022 3.8 e está com erro na hora abrir o navegador, aparece isso net.portswigger.devtools.client : unable to start browser alguém pode me ajudar por favor

Laps not loading in burp browser or any other proxy but load in normal

when i tried to open lap in burp browser is not loading but i still can see the requests and when i open in normal browser its working i check other website its working in burp browser i think there is problem for burp...

ERR_HTTP2_PROTOCOL_ERROR

I am receiving a ERR_HTTP2_PROTOCOL_ERROR in the browser when attempting to capture the traffic to a website. When I don't use the proxy it works just fine. As soon as you proxy the traffic to burp the error occurs. Has...

Bug in SQL injection lab

Can I get a sanity check on this lab? https://portswigger.net/web-security/sql-injection/examining-the-database/lab-querying-database-version-mysql-microsoft I tried the lab on my own at first and couldn't get the...

iOS proxy not working

I have always been able to proxy iOS mobile through Burpsuite However today I have no connection I have tried all the steps and debug but nothing. I have tried 3 iphones of different make and model, same thing on all. 2...

burb browser not work

this what it come to me when i click on open browser https://user-images.githubusercontent.com/88084590/168919847-83acfe0e-7066-4c70-9783-9a434b9ab273.jpeg

Mystery Labs selection

Hello, I wonder why if I select "Apprentice", SQL injection category is greyed out, when some SQLi labs at Apprentice level exist. Same thing if I select "Practitioner": Access Control is greyed out but some Access...

Burp Suite Community Edition - HTTP history shows wrong request

Hi, i'm using burp suite community edition v2022.2.4 on ubuntu 20.04.4LTS, the issue is when i edit a request when intercepting, for example the request body contains this: "idg=shakhsgaewcxvbz_eagvz2_egbvbvaa-hababa", i...

Mystery lab Challenge - XSS onresize

I've trying some mystery lab and i had to do an XSS with "body resize". I saw on xss cheatsheet this payload is marked as "Event handlers that do not require user interaction", and that don't require interaction with...

Frameable response (potential Clickjacking) issue

I received this issue in a scan with the description saying that 'If a page fails to set an appropriate X-Frame-Options or CSP header.... While I do not have the X-Frame-Options header on this page, I do have a CSP header...

Can not save my new credit card

I want to save new credit card detail but the card detail field don't have a box

GRAPHQL

When a LDAP user is logged in under a group with all permissions (scan view,editor etc..) except admin, when the API user calls to createsite, a "no permission page" is displayed for the site when a UI user is already logged...

Burp Enterprise + Jenkin integrations + site-driven configuration

Dear Team, we are trying to integrate Burp enterprise with Jenkin and site-driven configuration but we are getting the below error in jenkin build ERROR: Build step failed with...

Failed to find additional rooms after recorded sequence

Hello I have the latest Burp suite professional version 2022.3.7 and have recorded a login session and using it for the scanner. I first crawl unauthenticated and the switches to audit mode. I believe this is normal...

No email for Burp Suite Pro Trail

Recently I downloaded and installed Burp Suite Pro Trail but I did not get the email

Find and Replace Not working

Type: Request Header Match: ^Referer.*$ Replace: localhost Regex Match - checked Type: Request Header Match: "" Replace: X-Bug-Bounty:HackerOne-xxxx neither one of these are being placed in the repeater or...

Lab: Web cache poisoning via HTTP/2 request tunnelling

The official solution for this lab does not mention that you need to create a second :path pseudo-header - I realised this in a solution published on youtube. I am not sure why, but if I manipulate the original :path...

Burp Suite causes display corruption on Mac

Over the past several months I have started to experience intermittent issues where Burp Suite appears to be causing display corruption to other applications, but not Burp Suite itself which initially made it tricky to...

Automatic Backup Fail

My automatic backup fails every time with this error message : "Failed to rename backup file"