[Shish2k]

TL;DR: "Because you aren't using our snazzy new product; try it today!"

Also:

    This is primarily because of the most obvious problem:
    We are still using relational SQL databases.
    Were we to use NoSQL database systems such as MongoDB
    or CouchDB, none of these attacks would ever happen

Yeah, and motorbikes are safer than cars because the third and fourth wheels never fall off...

[ponyous]

+ even this is not entirely true. In PHP you can inject into Mongo using nested arrays.

:( We are not safe

[troels]

It doesn't even make sense. The problem is in the client side drivers/apis. That has absolutely nothing todo with the underlying storage system.

[SigmundA]

Make perfect sense, since there is no SQL in NoSQL its impossible to have a SQL injection, problem solved...

[astrodust]

In MongoDB you could theoretically have a JavaScript injection, which I'd argue is pretty bad.

[SigmundA]

Sorry the sarcasm didn't transfer to my post, you are correct.

[lucian1900]

Especially since MongoDB is not too hard to inject, in particular its aggregation framework.