HazirSite CVE-2006-7161 SQL-Injection Vulnerability

HazirSite CVE-2006-7161 SQL-Injection Vulnerability

HazirSite is prone to a sql-injection vulnerability. SQL injection vulnerability in giris_yap.asp in Hazir Site 2.0 allows remote attackers to bypass authentication via the (1) k_a class or (2) sifre parameter.