///
/// 替换非法字符 (杨军 06.9.6-11:52am)
///
/// 需要检查的字符串
/// string
public static string ReplaceDangerCode (string Temp)
{
Temp = Temp.Replace("“”","");
Temp = Temp.Replace("\"","");
Temp = Temp.Replace("or","");
Temp = Temp.Replace("&","");
Temp = Temp.Replace("*","");
Temp = Temp.Replace("select ","");
Temp = Temp.Replace("insert ","");
Temp = Temp.Replace("delete ","");
Temp = Temp.Replace("count(","");
Temp = Temp.Replace("drop table ","");
Temp = Temp.Replace("update ","");
Temp = Temp.Replace("truncate ","");
Temp = Temp.Replace("asc(","");
Temp = Temp.Replace("mid(","");
Temp = Temp.Replace("char(","");
Temp = Temp.Replace("xp_cmdshell","");
Temp = Temp.Replace("exec master","");
Temp = Temp.Replace("net localgroup administrators","");
Temp = Temp.Replace(" and ","");
Temp = Temp.Replace("net user","");
Temp = Temp.Replace(" or ","");
Temp = Temp.Replace("@","");
return Temp;
}
//上面的中文双引号替换为单引号
替换sql查询非法字符
最新推荐文章于 2024-03-22 11:04:57 发布