blind ssrf via dns rebinding is a technique where an attacker leverages a server’s backend URL-fetching functionality and uses DNS tricks to pivot into internal systems...
The “blind” part refers to the lack of direct response from the vulnerable server...
https://api.target.com/vendor/v3/external_registry
7f000001.ac14000a.rbndr.us
endpoint
parameter192.168.0.1
→ 192.168.0.153
response timings
rebinding payloads
This vulnerability allowed internal IP enumeration via DNS rebinding and blind SSRF behavior...