Exploit: Download Raw. Vulnerable App: N/A. Tags: Vulnerability.
Affected administrator components include com_admin, com_media, com_search. Both com_admin and com_search contain XSS vulnerabilities
So, seems that latest joomla 1.5.26 is not well protected. Maybe this exploit is possible with latest Joomla 2.5 also - we have not tested. I recommend you to protect folder administrator by IP or with password.
Joomla Exploit - database of Joomla CMS exploits.
How to exploit Joomla 1.5.x. 1. Getting to the admin Control Panel 2. Uploading shell 3. Messing... =)
№ 3 Info -> Core: Multiple XSS/CSRF Vulnerability Versions Affected: 1.5.9 Check: /?1.5.9-x Exploit: A series of XSS and CSRF faults exist in the administrator application.
Joomla 1.5.x (Token) Remote Admin Change Password Vulnerability.
Enjoy the administrator page ... he he he / * End Of File ---If you do not clearly learn first dasar2 SQL Injection Yach ..
1. Make sure you upgrade to Joomla 1.5.7 or later if you are running an old version of 1.5. 2. Make sure to change the username of the default admin account. Tags: 1.5, administrator, exploit, hack, hacked, jj kennedy, joomla, password, prevent, recovery, tutorial, Video.
Typically, this is an administrator user. Note, that changing the first users username may lessen the impact of this exploit (since the person who