OP 18 August, 2024 - 06:10 PM
(This post was last modified: 18 August, 2024 - 06:11 PM by ragdoll12.)
Hi all,
Can anyone crack a website that's running Joomla 2.5?
Joomla is a CMS software similar to Wordpress written in PHP.
Latest Joomla version 4.4.x so 2.5 is extremely old, way back from 2014/2015.
The only catch is that the https://website.com/administrator is blocked on the Joomla installation so that's not an entry point into the installation that can be used.
There is also no place to upload stuff on the website to exploit the website that way.
But the Ubuntu server that it is running on is extremely old (probably 14.x), has no firewall, has an OpenSSH server v6.6.1p which also has a lot of vulnerabilities. (Note: The SSH is secured with SSH Key authentication though and password authentication is disabled)
The website is running on an Apache 2 web server.
I'm willing to pay upto $50 if you are able to successfully break into the Joomla admin.
If you need a Ubuntu server to perform exploit from instead of your own machine/PC lmk and I'll give you my server SSH credentials.
You can Direct message me here on the website if you are interested.
This is a bump
Can anyone crack a website that's running Joomla 2.5?
Joomla is a CMS software similar to Wordpress written in PHP.
Latest Joomla version 4.4.x so 2.5 is extremely old, way back from 2014/2015.
The only catch is that the https://website.com/administrator is blocked on the Joomla installation so that's not an entry point into the installation that can be used.
There is also no place to upload stuff on the website to exploit the website that way.
But the Ubuntu server that it is running on is extremely old (probably 14.x), has no firewall, has an OpenSSH server v6.6.1p which also has a lot of vulnerabilities. (Note: The SSH is secured with SSH Key authentication though and password authentication is disabled)
The website is running on an Apache 2 web server.
I'm willing to pay upto $50 if you are able to successfully break into the Joomla admin.
If you need a Ubuntu server to perform exploit from instead of your own machine/PC lmk and I'll give you my server SSH credentials.
You can Direct message me here on the website if you are interested.
This is a bump