source: http://www.securityfocus.com/bid/29808/info

KEIL Software's photokorn is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data.

A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

This issue affects photokorn 1.542; other versions may be vulnerable as well. 

The following proof-of-concept URI is available:

http://www.example.com/[path]/index.php?action=[SQL]