Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

Combine Web Cache Poisoning Vulnerabilities Lab Issue

Aaron | Last updated: Aug 27, 2021 07:49AM UTC

I managed to changed the language to espanol but when I craft the response in exploit server by following the hint, it only gives me Client Error: Forbidden. So whenever I poisoned the espanol page, only the language option went blank. I can't seem to get the exploit response to work no matter what changes I make, it always comes back client error:forbidden. Any help would be appreciated!

Michelle, PortSwigger Agent | Last updated: Aug 27, 2021 01:20PM UTC

Thanks for your message. One of our users in the community has created a video walking through the steps to solve the lab, so it might help you to spot what is different in your approach. You can find the video here: https://www.youtube.com/watch?v=w_nxsG-JXHA I hope this helps. Good luck with the lab!

Aaron | Last updated: Aug 27, 2021 01:34PM UTC

Hello Michelle, thank you for your reply. I've followed the steps but at the 7:54 minute mark, I went to try to check if the response site would prompt an alert like it said it would and it only popped up Client Error: Forbidden. I'll try my best to debug the situation at the mean time.

Aaron | Last updated: Aug 27, 2021 02:53PM UTC

Problem fixed, it was the exploit url issue.

Michelle, PortSwigger Agent | Last updated: Aug 27, 2021 03:44PM UTC