过滤特殊字符

最新推荐文章于 2022-11-04 11:00:56 发布

aoju8535

最新推荐文章于 2022-11-04 11:00:56 发布

阅读量143

点赞数

原文链接：http://www.cnblogs.com/pghWord/p/5433436.html

版权

InputStream inputStream = TestTb.class.getClassLoader()
.getResourceAsStream("properties/test.properties");
Properties p = new Properties();
try {
p.load(inputStream);
inputStream.close();
} catch (IOException e1) {
e1.printStackTrace();
}
String[] fileHtmlTotext = new String[] {};
//System.out.println("FileHtmlToText:" + p.getProperty("FileHtmlToText")+ "\nFileSQLParam:" + p.getProperty("FileSQLParam"));
String readHtmlTotextStr = p.getProperty("FileHtmlToText");
String readSQLParamStr = p.getProperty("FileSQLParam");

// fileHtmlTotext = readSQLParamStr.split("\\|");
// for (int i = 0; i < fileHtmlTotext.length; i++) {
// System.out.println(fileHtmlTotext[i]);
// }

String userName = "<scrip>alert('asasas');</script>";
String password = "<span>asdfasdfasd</span>";
userName = StringEscapeUtils.escapeHtml3(userName);
password = StringEscapeUtils.escapeHtml4(password);
System.out.println("用escapeJavaScript方法转义之后的字符串为:"+StringEscapeUtils.unescapeEcmaScript(userName));
String sql = "userName="+ userName + "password =" + password;
System.out.println(sql);

转载于:https://www.cnblogs.com/pghWord/p/5433436.html

aoju8535

关注

0
点赞
踩
0

收藏

觉得还不错? 一键收藏
0
评论
过滤特殊字符

InputStream inputStream = TestTb.class.getClassLoader() .getResourceAsStream("properties/test.properties"); Properties p = new Properties(); try { p.load(inputStream); inputStream.close(...
复制链接

扫一扫