In this article Sandipan Pramanik describes common SQL injection vulnerabilities in Web applications. Sandipan also lists examples of what testers should be looking for in the code and offers some guidelines on how to fix these weak points.