Bug Reports - Page 8 - Burp Suite User Forum

Chromium auto deleting browser history

The chromium browser version "127.0.6533.99 (Official Build) (64-bit)" that comes with Burp Suite has been deleting history entries for website which I visited in the past. I lost a lot of URL that I visited. Google chrome...

Lab not updating "Solved" status

In the "Manipulating WebSocket messages to exploit vulnerabilities" lab, I have followed the given solution and the solution provided by the YouTube video, but the LAB status still says, "Not Solved". I am using Chrome with...

All Labs very slow today

Hi, Are you having some issue today ? I've tried a lot of labs and each of them are incredibly slow to respond.

False Positive Tag Rendering in Burpsuite

I was testing on a website, and found an Reflected XSS, but it seems it's only working if i open request on browser (with burpsuite link). When i open it manually to the browser, the XSS doesn't work Request: GET...

Certification issues

Hi, I began my exam approximately five hours ago, but I've encountered an issue. I'm currently stuck on the page instructing me to wait a few minutes for the machines to spin up. Despite waiting, the machines have not...

Collaborator has stopped working with the latest stable update

Hi all, When using a public and private collaborator server, I am unable to receive incoming lookups and requests. I have confirmed this issue with several other coworkers, and noted that the health check consistently...

Burp API custom configuration error - JSON parse exception for scan config

Hello Team, i am getting "JSON parse exception for scan config" error when trying to execute a scan using Burp API on Burp pro v2024.5.5 Scan works for Built in configs, but when i create a custom config, export it and try...

Problem with lab : CORS vulnerability with trusted insecure protocols

Hello, I have a problem with the lab: CORS vulnerability with trusted insecure protocols I copied the payload of the solution because I thought I had a problem with my initial payload but the bug is still present. The...

Could not start Burp: java.lang.ExceptionInInitializerError

When attempting to install burp for mac, the image mounts but when double clicking to install, it just wont install. Then attempted to use the JAR version and getting the error: Could not start Burp:...

No more activations allowed for this license

Unfortunately I have had to reinstall my machine and now when I try to install burp suite, I get the error "No more activations allowed for this license" How can i fix it? licensed to talos

Repeater response time inconsistent

Hi, I recently did some testing on different targets, where I tried testing for command injection. I observed that the sleep commands seemed to have worked in some cases, while manually testing via repeater. For instance,...

SameSite Lax bypass via method override Lab Broken

This lab is broken, when sending the payload to the victim (the correct one listed in the solution and with a different mail) the victim simply does not visit it as you can see in the access log as I don't see an IP address...

collaborator not working to complete Routing-based SSRF lab

For some reason my collaborator isn't working to take Lab: Routing-based SSRF and Lab: SSRF via flawed request parsing. The SSRF via flawed request parsing lab is a requirement before you take the certification, and I would...

Burp Suite Pro cursor/pointer issue

I am having cursor issue while using pro version. Trying to select text but can not select last part of texts. Posted as a video to show the bug. https://www.youtube.com/watch?v=1lq92J88gIY

Chromium bookmark issue

At some point, included Chromium browser started to crash whenever I use the bookmark feature, be it either clicking the star or Ctrl+D. I can't pinpoint the exact release but I would say around 2 months or 3 it was working...

Burp Suite Professional freezes on launch

I am getting Safe Mode prompt saying "Burp did not start properly last time. Do you want to start it without loading extension?" and on choosing either Yes or No fails to load burp suite. This happens for both saved and...

Lab: Stealing OAuth access tokens via an open redirect

In this lab, there seems to be a problem with the victim accessing the link. No matter what payload is being sent, the logs don't show the victims's IP address, showing they never accessed it, so the lab can't be finished.

504 Gateway Timeout

Hello, I am using Burp Suite Professional and when completing the labs it randomly gives me an 504 Gateway Timeout. I have to close the lab completely and load it again, which consumes time because it does it quite a lot. Is...

HTTP Match And Replace Rules Bug

Hello, I am using Burp Suite Professional version 2024.7.4-31588. In this version, I am adding a custom header using the "Match and Replace" section under the proxy settings. For example, if the header I add is "TEST,"...

ClickJacking labs remain as not solved

Hi PortSwigger Team, Even after completing more times "Basic clickjacking with CSRF token protection" and "Clickjacking with form input data prefilled from a URL parameter" labs, they are showing as not solved. I just...