Wrote a Joomla extension remote file upload tool back in 2011 & a PHP CGI argument injection remote exploit version 0.3. (Works on versions up to 5.3.12 and 5.4.2) Works as a CISO out of Tehran, Iran Administers (owns?) 0-day.net
Speaks Persian & English
Only knows web languages because pointers are too hard.
http://www.lo0.ro/2011/jce-joomla-extension-remote-file-upload/
http://packetstormsecurity.com/files/author/9791/