public static boolean sql_inj(String str) {
String inj_str = "'|and|exec|insert|select|delete|update|count|*|%|chr|mid|master|truncate|char|declare|;|or|-|+|,";
String[] splitVal = inj_str.split("\\|");
for (String s : splitVal) {
if (str.contains(s)) {
return true;
}
}
return false;
}
SQL注入校验简易版
最新推荐文章于 2024-09-09 23:37:05 发布