I hate web security... it's such a pain. Anyway, here are some links to deal with SQL injections.
A list of 15 free scanners: http://www.security-hacks.com/2007/05/18/top-15-free-sql-injection-scanners
The Slashdot thread about the above: http://developers.slashdot.org/article.pl?sid=07/05/19/206205
Another page - very useful examples of how scripts test for holes in dynamic pages: http://www.securiteam.com/securityreviews/5DP0N1P76E.html
Tags: sql, sequel, injection, security, web, webapp, hacker, cracker, hack, website