This drove me crazy. Check the text in your body field, or whatever text field and see if you have the word "select" in your content text. Sometimes it identifies it as a SQL injection. Use a different word than "select" in your text.
Not sure if there's a work around but I use a synonym for it in my content.