https://blog.onurcangenc.com.tr/htb-valentine/2026-04-03T20:22:32.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/04/Gemini_Generated_Image_9on0o9on0o9on0o9-1.pngGemini_Generated_Image_9on0o9on0o9on0o9-1.pnghttps://blog.onurcangenc.com.tr/htb-cicada-from-password-spraying-to-token-abuse/2026-04-03T16:17:02.110Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_xkz25rxkz25rxkz2.pngGemini_Generated_Image_xkz25rxkz25rxkz2.pnghttps://blog.onurcangenc.com.tr/htb-irked-writeup-unrealircd-backdoor-to-root-via-suid-abuse/2026-04-03T16:11:41.145Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_g3j66eg3j66eg3j6.pngGemini_Generated_Image_g3j66eg3j66eg3j6.pnghttps://blog.onurcangenc.com.tr/htb-beep/2026-04-03T14:47:37.362Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_l4dqb8l4dqb8l4dq.pngGemini_Generated_Image_l4dqb8l4dqb8l4dq.pnghttps://blog.onurcangenc.com.tr/htb-curling-joomla-rce-to-curl-config-file-abuse/2026-04-03T01:30:42.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/04/d7ea8cb4-2412-4e19-b16a-036b0e9c0cf0.jpgd7ea8cb4-2412-4e19-b16a-036b0e9c0cf0.jpghttps://blog.onurcangenc.com.tr/cve-2025-10878/2026-03-30T23:12:46.385Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_wv9q7qwv9q7qwv9q.pngGemini_Generated_Image_wv9q7qwv9q7qwv9q.pnghttps://blog.onurcangenc.com.tr/cve-2026-34156-vm-sandbox-escape-to-rce-in-nocobase/2026-03-28T13:43:49.278Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_dp2l7vdp2l7vdp2l.pngGemini_Generated_Image_dp2l7vdp2l7vdp2l.pnghttps://blog.onurcangenc.com.tr/applying-ethical-theories-in-responsible-disclosure-program/2026-03-25T04:52:52.465Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/nf6E6BMh-1.jpgnf6E6BMh-1.jpghttps://blog.onurcangenc.com.tr/htb-bank/2026-03-21T00:31:12.570Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_ofo3r3ofo3r3ofo3.pngGemini_Generated_Image_ofo3r3ofo3r3ofo3.pnghttps://blog.onurcangenc.com.tr/idor-in-moodle-openai-chat-block-block_openai_chat-proof-of-concept-poc-cve-2025-60511/2026-03-17T23:40:34.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_60wic060wic060wi.pngGemini_Generated_Image_60wic060wic060wi.pnghttps://blog.onurcangenc.com.tr/cve-2025-10228/2026-03-16T20:30:22.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_2oire2oire2oire2.pngGemini_Generated_Image_2oire2oire2oire2.pnghttps://blog.onurcangenc.com.tr/cve-2025-60507-moodle-geniai-plugin-v2-3-6-xss-via-pdf-upload-prompt-injection/2026-03-16T20:13:16.542Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_7uv7x87uv7x87uv7.pngGemini_Generated_Image_7uv7x87uv7x87uv7.pnghttps://blog.onurcangenc.com.tr/cve-2025-60506-stored-cross-site-scripting-xss-in-moodle-pdf-annotator-plugin-v1-5-release-9/2026-03-16T20:12:47.222Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_gjebu4gjebu4gjeb.pngGemini_Generated_Image_gjebu4gjebu4gjeb.pnghttps://blog.onurcangenc.com.tr/cve-2025-57520-stored-xss-in-decap-cms-3-8-3/2026-03-16T20:12:38.233Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_czdjeqczdjeqczdj.pngGemini_Generated_Image_czdjeqczdjeqczdj.pnghttps://blog.onurcangenc.com.tr/htb-nibbles-file-upload-to-root/2026-03-16T18:35:17.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_cve63tcve63tcve6.pngGemini_Generated_Image_cve63tcve63tcve6.pnghttps://blog.onurcangenc.com.tr/htb-devvortex-from-joomla-info-disclosure-to-root/2026-03-16T11:21:28.152Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/Gemini_Generated_Image_68n5wv68n5wv68n5.pngGemini_Generated_Image_68n5wv68n5wv68n5.pnghttps://blog.onurcangenc.com.tr/htb-bounty-file-upload-to-system-via-chimichurri/2026-03-14T22:11:09.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_v219c-v-BJkMKvx3bAWpcg.webp1_v219c-v-BJkMKvx3bAWpcg.webphttps://blog.onurcangenc.com.tr/my-c-ai-mlpen-exam-journey-2/2026-03-13T22:31:30.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_9rBzA9nvHnOCkFPuIPP9EQ.jpg1_9rBzA9nvHnOCkFPuIPP9EQ.jpghttps://blog.onurcangenc.com.tr/i-asked-an-ai-about-its-security-policies-it-gave-me-the-api-key/2026-03-13T22:20:27.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_GICozJ36YK4jbxuyv0So2g.jpg1_GICozJ36YK4jbxuyv0So2g.jpghttps://blog.onurcangenc.com.tr/breaking-an-ai-powered-shell/2026-03-13T22:18:44.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/0_IrbdPSGe91dvmFBm.jpg0_IrbdPSGe91dvmFBm.jpghttps://blog.onurcangenc.com.tr/htb-blocky/2026-03-13T22:16:58.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_5kxnjP_IfGY6sxlW6GsiIg.jpg1_5kxnjP_IfGY6sxlW6GsiIg.jpghttps://blog.onurcangenc.com.tr/htb-keeper-writeup-how-a-danish-dessert-unlocked-root-access/2026-03-13T16:40:16.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_JmHvP5cIYvdxps-looXZZQ.jpg1_JmHvP5cIYvdxps-looXZZQ.jpghttps://blog.onurcangenc.com.tr/htb-knife-php-8-1-0-dev-supply-chain-backdoor-rce-to-root/2026-03-13T16:38:16.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_dfWBAa2DHYELxtRrxRcieQ.jpg1_dfWBAa2DHYELxtRrxRcieQ.jpghttps://blog.onurcangenc.com.tr/htb-broker-writeup/2026-03-13T15:00:53.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_99fAv1G0A9iuTkEYtQDaZw.webp1_99fAv1G0A9iuTkEYtQDaZw.webphttps://blog.onurcangenc.com.tr/my-c-ai-mlpen-exam-journey/2026-03-12T15:34:01.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_9rBzA9nvHnOCkFPuIPP9EQ.webp1_9rBzA9nvHnOCkFPuIPP9EQ.webphttps://blog.onurcangenc.com.tr/htb-bashed-writeup-from-phpbash-webshell-to-root-via-cron-job-abuse/2026-03-12T15:31:03.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_HxzGOit6W8w8fH0arH3-2w.jpg1_HxzGOit6W8w8fH0arH3-2w.jpghttps://blog.onurcangenc.com.tr/htb-mirai-default-creds-pi-hole-usb-forensics/2026-03-12T15:30:20.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_iyk1_KaqFIKU-8bRqO4UmA.png1_iyk1_KaqFIKU-8bRqO4UmA.pnghttps://blog.onurcangenc.com.tr/htb-shocker-rce-via-cgi-bin-perl-privesc/2026-03-12T15:29:33.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_AxotoJPbRFlnHkubQWLXlA.png1_AxotoJPbRFlnHkubQWLXlA.pnghttps://blog.onurcangenc.com.tr/cross-detector-inconsistency-in-ai-text-detection-a-benchmark-study-with-hybrid-evasion-techniques/2026-03-12T15:02:58.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_2INie45JG5h_V_e18KYUEw.webp1_2INie45JG5h_V_e18KYUEw.webphttps://blog.onurcangenc.com.tr/htb-sense-hacking-the-firewall/2026-03-12T10:16:25.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_P-bWOcA-hSdR-AQofUUDiQ-1.png1_P-bWOcA-hSdR-AQofUUDiQ-1.pnghttps://blog.onurcangenc.com.tr/htb-arctic-remote-command-execution-to-juicypotato-privesc/2026-03-12T10:15:31.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_P-bWOcA-hSdR-AQofUUDiQ.png1_P-bWOcA-hSdR-AQofUUDiQ.pnghttps://blog.onurcangenc.com.tr/htb-return-ldap-credential-theft-to-service-hijacking/2026-03-12T10:09:04.000Zhttps://blog.onurcangenc.com.tr/content/images/2026/03/1_pviiN4Kuv-m5P3U3g6eYfA.jpg1_pviiN4Kuv-m5P3U3g6eYfA.jpg