//Nvs_Net_Safe类里面插入代码using System;using System.Web;using System.Text;using System.Text.RegularExpressions;publicclassNvs_Net_Safe{// private const string StrRegex = @"\b(and|or)\b.{1,6}?(=|>|<|\bin\b|\blike\b)|/\*.+?\*/|<\s*script\b|\bEXEC\b|UNION.+?SELECT|UPDATE.+?SET|INSERT\s+INTO.+?VALUES|(SELECT|DELETE).+?FROM|(CREATE|ALTER|DROP|TRUNCATE)\s+(TABLE|DATABASE)";privateconststring StrRegex =@"<[^>]+?style=[\w]+?:expression\(|\b(alert|confirm|prompt)\b|^\+/v(8|9)|<[^>]*?=[^>]*?&#[^>]*?>|\b(and|or)\b.{1,6}?(=|>|<|\bin\b|\blike\b)|/\*.+?\*/|<\s*script\b|<\s*img\b|\bEXEC\b|UNION.+?SELECT|UPDATE.+?SET|INSERT\s+INTO.+?VALUES|(SELECT|DELETE).+?FROM|(CREATE|ALTER|DROP|TRUNCATE)\s+(TABLE|DATABASE)";publicstaticboolPostData(){bool result =false;for(int i =0; i < HttpContext.Current.Request.Form.Count; i++){
result =CheckData(HttpContext.Current.Request.Form[i].ToString());if(result){break;}}return result;}publicstaticboolGetData(){bool result =false;for(int i =0; i < HttpContext.Current.Request.QueryString.Count; i++){
result =CheckData(HttpContext.Current.Request.QueryString[i].ToString());if(result){break;}}return result;}publicstaticboolCookieData(){bool result =false;for(int i =0; i < HttpContext.Current.Request.Cookies.Count; i++){
result =CheckData(HttpContext.Current.Request.Cookies[i].Value.ToLower());if(result){break;}}return result;}publicstaticboolreferer(){bool result =false;return result =CheckData(HttpContext.Current.Request.UrlReferrer.ToString());}publicstaticboolCheckData(string inputData){if(Regex.IsMatch(inputData, StrRegex)){returntrue;}else{returnfalse;}}}