Bug Reports

Report a bug

  • Polling server connection fails on private collaborator instance

    Hi there, I have setup a private collaborator server with let's encrypt wildcard certificates. It works fine, except that I can only pull over unencrypted HTTP. This is very strange, as I do not have a "polling" section in the configuration file. This means that Burp Collaborator server will use the same wildcard certificate for interactions and polling. I get the following when ...

    3 Agent Answers    3 Community Answers
    Jun 04, 2019 08:07AM UTC
  • Browser response not visible

    I have tried with java 8 and java 12 but without luck. When i try to view response in browser from Burp Suite Professional 2.0.22beta I can't actually see the response. I click to render the response, it work but all i see is a blank page. But i've noticed that the response is actually rendered as if i try to click somewhere i get mouse animations like when i try to click a button in ...

    5 Agent Answers    4 Community Answers
    Jun 01, 2019 04:32PM UTC
  • Web academy

    Hello, i think there is an error in Lab: SQL injection attack, querying the database type and version on MySQL and Microsoft. https://portswigger.net/web-security/sql-injection/examining-the-database/lab-querying-database-version-mysql-microsoft I can't find working payload, and payload from solution didn't work too. THX.

    1 Agent Answer    0 Community Answer
    May 31, 2019 12:11PM UTC
  • Possible bug in Lab Blind SQL injection with time delays and information retrieval

    The injection is on TrackingId cookie, but it only works if you inject in a "/filter?category=" page, not in a "/product?productId=" page. It drove me crazy for a while :)

    1 Agent Answer    1 Community Answer
    May 30, 2019 10:40AM UTC
  • Embedded browser initialization failed

    Hi I am having an issue with the Response/Render feature of the embedded browser. When I click on "Render" in the "Response" tab I receive the following message "Embedded browser initialization failed" I also ran the Embedded browser health check and I get the following messages. Checking Platform Support - Success Checking Browser Binaries - Success C...

    5 Agent Answers    3 Community Answers
    May 28, 2019 03:58PM UTC
  • Render broken in latest version - 2.0.22

    Hello, in the latest version 2.0.22 the 'render' function is broken. Not only it opens in an external window now, which is unacceptable, but it displays only a blank page, always. It was working FINE in the previous version. Whatever you changed in this version please undo it.

    5 Agent Answers    9 Community Answers
    May 26, 2019 06:52PM UTC
  • High CPU Utilization

    I am seeing an extremely high usage on my CPU in burpsuite. I am also seeing the RAM consumption go up to 16-17GB in a session. I am in the middle of a test of an API for a client. I can kill burp and then reload it. Then it is okay for about 15-20 minutes before returning to high usage. Let me know what you need to determine what might be causing this issue.

    3 Agent Answers    4 Community Answers
    May 23, 2019 04:17PM UTC
  • Problems updating Burp Enterprise

    It seems that the online update has some sort of built-in timeout and we are consistently hitting it and unable to update. With previous versions, the update would finish after many retries, but since v1.0.14beta we have not been able to update. I've talked to our infrastructure guys and it seems that there is no throttling or blocking of Burp update downloads. The following error is ou...

    3 Agent Answers    2 Community Answers
    May 21, 2019 06:22AM UTC
  • Repeater abnormal Server response "400 Bad request"

    http://oa.wz.zj.cn/ctkj_acl/html/login.html the normal request data: POST /dwr/call/plaincall/FrontAction.getmobilePwdPortal.dwr HTTP/1.1 Host: oa.wz.zj.cn User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 Accept: */* Accept-Language: zh-CN,zh;q=0.8,en-US;q=0.5,en;q=0.3 Accept-Encoding: gzip, deflate Content-Type: text/plain Referer: http://oa.wz...

    1 Agent Answer    0 Community Answer
    May 21, 2019 06:20AM UTC
  • Burp Suite 2.0 doesn't play well with Google Drive File Stream

    I've had issues with Burp and GDrive File Stream on Windows 10 (fresh install). Specifically, automatic backups fail and the explicit saving of a project in the GDrive location (G:/ by default) results in the following error message: "Failed to create new project file: java.nio.channels.OverlappingFileLockException" The problem persists even after marking the destination dire...

    1 Agent Answer    0 Community Answer
    May 16, 2019 10:22PM UTC