SQL Injection - Part 1
Randy says that the biggest reason we have so many injection vulnerabilities is that all the asp books use inline sql for their examples! We STILL encounter developers who don't understand injection. Read and pass on to your dev team.