Joe McCray of Learn Security Online explains practical techniques for SQL Injection and how to work around preventative measures. SQL Injection described here is about hacking the web application above the database to allow an attacker to execute arbitrary SQL queries against the database.