Bug Reports

Report a bug

  • Crash when out of memory instead of error

    When Burp runs out of memory, for example when restoring a large state, it just crashes, and the only way to close it is to kill the process. It should be doable to prevent this situation, and give an error like "insufficient memory for this operation, please restart burp with more memory" or something similar, and to cancel the restore (or the other current operation which is close to c...

    1 Agent Answer    0 Community Answer
    Feb 02, 2016 10:04AM UTC
  • Scanner is very slow running

    Burp Scanner is very slow running why ???

    4 Agent Answers    3 Community Answers
    Jan 22, 2016 01:28PM UTC
  • How to fix the burp suit jar files.

    Getting the error while launching burpsuite_pro_v1.6.35.jar. Error Description: "Error Invalid or Corrupt jarfile"

    8 Agent Answers    8 Community Answers
    Jan 22, 2016 09:48AM UTC
  • Multiple content types specified - false positive

    Just ran into this (relatively minor) false positive. (Burp Pro 1.6.34) The report was issued over a a) Header: Content-Type: application/x-javascript and b) the string: '<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />'; found in the body of the response. The code looks like it may be from tinymce.min.js (where I do find th...

    1 Agent Answer    0 Community Answer
    Jan 21, 2016 11:50AM UTC
  • BurpSuite Pro crashes when using Grep feature in burp intruder after 1.6.33

    After restoring a Burp Intruder attack from version =< 1.6.32, burp crashes if you try to use the Grep features in Intruder Options.

    2 Agent Answers    0 Community Answer
    Jan 18, 2016 03:58PM UTC
  • Missing windows slider on Windows

    Hi, when you are running Burp Suite on Windows, the windows slider is missing. It occurres when you have more items in a list view (i.e. in proxy tab) and you need to scroll down. Thank you.

    1 Agent Answer    0 Community Answer
    Jan 15, 2016 04:15PM UTC
  • Failed to restore scan issue type 0x501200 in v1.6.33

    Hi. I have found a fatal bug. This bug will fail the state of the restoration in v1.6.33. Bug occurs when the "DOM data manipulation (DOM-based)" has been detected in the issue. However, we have found a workaround Fortunately. By performing the following configuration, the bug can be avoided. Tabs: Scanner> Options Area: Static Code Analysis Check: Don't perform stati...

    2 Agent Answers    2 Community Answers
    Jan 15, 2016 04:56AM UTC
  • OS Command Injection FP?

    Hi all, Burp active scan has found potential OS Command Injection using nslookup as the example. I'm unable to replicate this and the IP that burp collaborator shows is from google rather than the server of which the wbapp resides on. Anyone ever seen this before? Request: message=aaaaaaa'"`0%26nslookup%20ke2pt3qow3ixymvllsb78bv5rwxsngk4cr2fr.burpcollaborator.net.%26`' ...

    3 Agent Answers    2 Community Answers
    Jan 13, 2016 05:09PM UTC
  • Collaborator issue

    Hi I'm facing a permanent issue since collaborator has been implemented which is I never do heath check and get a positive result Here is screenshot of my situation http://postimg.org/image/8z2xs1wxj/ http://postimg.org/image/hstu95jw7/

    2 Agent Answers    0 Community Answer
    Jan 12, 2016 07:43PM UTC
  • Failed to auto select SSL parameters

    I'm trying to access the Single sign on app in a UAT environment, but I get an error in browser saying : "Received fatal alert: close_notify" In BURP alert : it says "failed to autoselect ssl parameters <URL>". Upon installing the BURP certificate in browser I tried below steps: 1. Mozilla v43 - Disabled security.ssl3.dhe_rsa_aes_128_sha 2. tried IE 8 - no g...

    2 Agent Answers    2 Community Answers
    Jan 11, 2016 06:22AM UTC