Just stumbled upon this fantastic video of Mike Pound who explains how SQL injections work and what risk they cause.

Please note that running SQL injections on other’s sites is considered a crime! Don’t be a jerk and only experiment with SQL injections on own (local) sites!