Pentesting

Joomla

In /administrator/manifests/files/joomla.xml you could access a list of files inside the root folder, and version of Joomla. From /plugins/system/cache/cache.xml you could get an approximate version of Joomla thanks to the copyright information.

In 80,443 - Pentesting Web Methodology is a section about CMS scanners that can scan Joomla.