Firefox plug-ins assist developers in finding XSS and SQL vulnerabilities

Blog article submitted for your perusal:
http://www.darkreading.com/blog.asp?blog_sectionid=447&f

These plug-ins aren’t perfect, but may help site developers check for “low-hanging fruit” types of vulnerabilities. Security Compass released XSS-me (for cross-site scripting) and SQL Inject-me late in November, according to the article. While these plug-ins may be useful, they will not identify vulnerabilities that a dedicated hacker may make use of in a targeted attack.

This article also contains several other interesting links.

Has anyone in the TechRepublic community made use of these, or other similar tools? What do you think of them?