This is a whitepaper that goes into detail on how a PHP shell can be uploaded when leveraging SQL injection.
You can download it from the following link: https://packetstormsecurity.com/files/download/125800/phpshellthroughsqli.pdf
Source: https://packetstormsecurity.com/files/125800/Uploading-PHP-Shell-Through-SQL-Injection.html