This week's book giveaway is in the Testing forum. We're giving away four copies of The Way of the Web Tester: A Beginner's Guide to Automating Tests and have Jonathan Rasmusson on-line! See this thread for details.
Moving to Object Relational mapping forum, although I suspect SQL injection is not possible in Hibernate since there are no direct SQL queries. SQL injection only plays a part when you are forwarding input directly into a SQL query such as