Two more nice articles posted regarding SQL injection. A bit late, but here they are:
Sounds like an explanation on how .NET can mitigate it... For more background, check out Advanced SQL Injection and More Advanced SQL Injection; they're excellent.
[via Incessant Ramblings]