Well, so i am giving a talk at OWASP Australia in february 2009. The title of the talk is "Recent Advancements in SQL Injection Exploitation Techniques". The talk will demonstrate a number of scenarios where this vulnerability goes undetected even by the most popular commercial scanners. A number of exploit techniques will be shown along with some "cool" stuff.