Another CMS widely used around the world is Joomla. As with WordPress, Joomla is based on PHP and its aim is to help users with little or no technical knowledge create websites, although it may not be as user-friendly as WordPress and is more suited for e-commerce sites rather than for blogs and news sites.

Kali Linux also includes a vulnerability scanner specialized in finding vulnerabilities in Joomla installations, JoomScan. In this recipe, we will use it to analyze the Joomla site installed in our vulnerable VM, vm_1.