This product is from the same guys who discovered a bunch of vulnerabilities in Oracle and SQL Server. From when my company was looking at it, it's worth the dough.

On a secondary note... had the chance to hear David Litchfield of NGS talk at Black Hat on Wednesday. David worked through a secondary SQL Injection attack on Oracle... he couldn't do the talk he had prepared because Oracle hasn't provided the patches to the public yet.

These guys know their stuff and it shows in their products.