Vulnerability & Exploit Database

Back to search

Joomla Real Estate Manager Component Error-Based SQL Injection

This module exploits a SQL injection vulnerability in Joomla Plugin com_realestatemanager versions 3.7 in order to either enumerate usernames and password hashes.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name

auxiliary/gather/joomla_com_realestatemanager_sqli

Authors

  • Omer Ramic
  • Nixawk

References

Reliability

Development

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use auxiliary/gather/joomla_com_realestatemanager_sqli msf auxiliary(joomla_com_realestatemanager_sqli) > show actions ...actions... msf auxiliary(joomla_com_realestatemanager_sqli) > set ACTION <action-name> msf auxiliary(joomla_com_realestatemanager_sqli) > show options ...show and set options... msf auxiliary(joomla_com_realestatemanager_sqli) > run