PhotoPost PHP SQL Injection Vulnerability

# Date: 23/07/2010
# Software Link: www.photopost.com
# Version: 4.0 - 4.6
# Tested on: windows xp pack 3
# CVE : N/A

--------------------------exploit------------------------------
dork : Powered by: PhotoPost PHP 4.6

exploit:  www.site.com/photopost/index.php?cat=1 [sql injection]