SQL Injection Bug Defined

Joel Spolsky briefly explains this very common security defect. Because my last name (O'Brien) contains an apostrophe, I'm particularly conscious of how common is this vulnerability.