This Metasploit module exploits a SQL injection vulnerability in Joomla Plugin com_realestatemanager versions 3.7 in order to either enumerate usernames and password hashes.
f03f7c240687fb52f0364cc058d531021fb326e3935fac540a81a01ed20f3f5d
The Joomla JNews component suffers from a remote SQL injection vulnerability.
8287b68a05ca05664203c4326611ce19b973e1b007488fd368ffc02614c741c3