CVE Certified
GHDB

intitle:"Joomla - Web Installer"

prev next

Google search: intitle:"Joomla - Web Installer"

Hits: 3448

Submited: 2006-03-18

Joomla! is a Content Management System (CMS) created by the same team that brought the Mambo CMS. This dork finds the Web Installer page. On newer versions, after you install, joomla asks to delete installation dir before to be functional.The Webinstaller gives an attacker information about the php configuration and rgod has even found a way to inject data into the configuration.php file, resulting in a DoS attack (see the forums for more info).The admin logon can be found searching: intitle:"- Administration [Joomla]" but there are no default passwords.