## https://sploitus.com/exploit?id=CC9D6904-86BB-5302-98EF-5C4F8C4233B9
# Blind-SSRF-to-Remote-Code-Execution-Shellshock-Professional-Bug-Bounty-Report
This repository contains a professional bug bounty report demonstrating the successful exploitation of a Blind SSRF vulnerability that reached an internal CGI endpoint vulnerable to Shellshock (CVE-2014-6271). Remote command execution was confirmed using an out-of-band (OAST) DNS callback, showcasing the complete attack chain, technical analysis.