Bug Reports - Page 87 - Burp Suite User Forum

Issue resource pool

Hello, I am experiencing an issue with the resource pool when using burp scanner. - When setting the resource pool to the default 10 concurrent requests for an audit of a request, only one request after another is...

Certificate Requests

Hey, I just reset my computer since it was getting really laggy and now I can no longer activate burpsuite on my main machine, and one on my Virtual machine. It says no more activations allowed for license but I need burp...

Wrong Definition ( SSRF )

Hello Portswigger Academy, I really hope this email finds you doing very well. Portswigger web academy is considered as one of the most famous training's source when it comes to the web applications penetration testing...

UTF-8 in WebSocket Repeater history

Hello, UTF-8 characters (like accentuated character "é") are correctly displayed nearly everywhere in Burp Suite, except in the History view of the Websockets Repeater. A screenshot was uploaded to...

Bug in Lab

when I was trying to solve (Modifying serialized objects Lab) exactly like provided solution I found the below error Internal Server Error PHP Fatal error: Uncaught Exception: unserialize() failed in...

Burp Suite Enterprise Web Server Not Responding

I'm currently unable to navigate to the burp suite enterprise dashboard. The only error I dug up in the logs is the following: 2021-05-24 09:44:25 [f] ERROR n.portswigger.enterprise.common.d.r - Service failed to...

Exploiting cross-site scripting to steal cookies, the simulated user does not visit the page (no autofilled creds)

Hello! the Exploiting cross-site scripting to capture passwords lab seems to not work. been trying for 3 hours now. No simulated user visits the page hence no autofilled credentials are put into the input fields and sent...

Burp State is Corrupt

Every time I close a project and open it again, I get the notification stating that the Burp state is corrupt and cannot be opened. Heads up - I am saving the state in a shared location.

100% CUP suing

Hi Team, I'm using a trial version of Burp Suite pro but I have one problem whenever I'm scanning any website it's using 100% of my CPU so please help

Burp changes http headers even when not told to

I'm using the latest version of burp community "burpsuite_community_v2021.4.3" the jar version and it is changing the HTTP response headers even when told not to. burp has set all headers to have first Letter...

Issues saving scan configuration in Burp Suite Professional

I am actually using this under the obsglobal.com license - my IS team didn't share the email used for our account so sending this in under my old login. When I choose new scan, then new configuration, choose audit - no...

Burp Collaborator built-in DNS server responds with NOTIMP to CAA requests

Hello! (tested on v.1.7.37) During renewal of wildcard certificates from Let's Encrypt, there's two DNS-related events: the validation of the ACME challenge (synchronous) and the validation of CAA entries (asynchronous)....

Unable to upgrade Burp Pro to 2021.5.1

Unable to upgrade burp pro to 2021.5.1 during installation burp gives error "c:\users\xx\AppData\Local\Programs\Burpsuitepro\burpsuite_pro.jar. Could not create this file"

Lab not found

Hello, when I open any of the web security labs, it shows me that the resource could not be found. I tried several labs and it gives me the same message every time.

Illegal reflective access by burp.fr8

I am running BurpSuite Professional v2021.5.1 Build 7814 and receive the following to the terminal while running BurpSuitePro: (The only extension loaded is turbo-intruder.) $ ./BurpSuitePro WARNING: An illegal...

With IOS 14 iphone, the traffic is being intercepted between the client and server, but I'm unable to connect to the site on iphone.

When I go to any site via safari on iphone(ios 14), I'm getting "This connection is not private" and when I hit the option to visit this site, I'm still not able to connect to the site. However, I'm seeing the traffic in...