SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote malicious users to bypass authentication via the (1) k_a class or (2) sifre parameter.
aspindir hazirsite 2.0