I MurderSkillz have found a auth bypass in "Site Off the Shelf Solution". The Sql injection takes place in registration.asp
If user and pass is inserted with special characters it will grant you admin. Vendors website: http://www.vrvirtual.com

User:pass

' or 'g00ns.net'='g00ns.net

Shouts to z3r0, neX, uid0 (exploitercode.com), Zodiac, Wicked, giovanni and all the other I may have forgot..
Once again..g00ns.net fucking owns j00!

PS. Fuck Skullz..bitches aint got shit on us!