I heard of SQL Injection before reading this document, but i never really knew what it was. After reading this document, I feel its necessary to try these techniques after writing my db scripts.
http://www.spidynamics.com/assets/do...LInjection.pdf Web Applications and SQL Injection
SQL injection is a technique for exploiting web applications that use client-supplied data in SQL queries, but without first stripping potentially harmful characters. Despite being remarkably simple to protect against, there is an astonishing number of production systems connected to the Internet that are vulnerable to this type of attack. The objective of this paper is to focus the professional security community on the techniques that can be used to take advantage of a web application that is vulnerable to SQL injection, and to make clear the correct mechanisms that should be put in place to protect against SQL injection and input validation problems in general.
Readers should have a basic understanding of how databases work and how SQL is used to access them. I recommend reading eXtropia.comÂ’s Introduction to Databases for Web Developers at
http://www.extropia.com/tutorials/sql/toc.html.
SQL Injection 
Linear Mode
