Another auxiliary for Metasploit that can be used to enumerate plugins is joomla_plugins. The auxiliary uses a word list to find directory paths to detect various plugins used by Joomla. We can execute the following command to use the plugin enumeration module:
use auxiliary/scanner/http/joomla_plugins
The following screenshot shows the output of the preceding command:
The output of show options is shown in the preceding screenshot. Once the module is executed, the script returns the name of the plugins it has discovered, as shown:
By default, the word list at is used by the auxiliary; we can use a custom word list as well. In the next section, we will use Joomla to perform vulnerability scanning.