Exploit for Joomla JCK Editor 6.4.4 (CVE-2018-17254)
Joomla-JCK-Editor-644-SQL-Injection
The JCK Editor Jtreelink plugin for Joomla! fails to correctly parse the user inputs, allowing SQL Injection
This exploit takes advantage of this security flaw and dump the administrators credentials and possibly upload a PHP RCE shell
Exploit Title: Joomla JCK Editor 644 SQL Injection
Google Dork: inurl:/plugins/editors/jckeditor/plugi