【c#操作小技巧】过滤非法字符串

最新推荐文章于 2022-08-05 22:01:22 发布

游戏自学

最新推荐文章于 2022-08-05 22:01:22 发布

阅读量883

点赞数

分类专栏：日记文章标签： c# 开发语言

本文链接：https://blog.csdn.net/zhaoyang314/article/details/125492878

版权

日记专栏收录该内容

36 篇文章 1 订阅

订阅专栏

  /// <summary>
        /// 过滤非法字符
        /// </summary>
        /// <param name="filterString"></param>
        /// <param name="exclueStr">排除的字符串，＂，＂分割如 ".,-,"</param>
        /// <returns></returns>
        public static string SafeFilter(string str, string exclueStr)
        {
            str = str.Replace(" ", "");
            if (exclueStr.IndexOf("',") < 0)
            {
                str = str.Replace("'", "");
            }
            if (exclueStr.IndexOf(",,") < 0)
            {
                str = str.Replace(",", "");
            }
            if (exclueStr.IndexOf("-,") < 0)
            {
                str = str.Replace("-", "");
            }
            if (exclueStr.IndexOf("+,") < 0)
            {
                str = str.Replace("+", "");
            }
            if (exclueStr.IndexOf("%,") < 0)
            {
                str = str.Replace("%", "");
            }
            if (exclueStr.IndexOf("&,") < 0)
            {
                str = str.Replace("&", "");
            }
            if (exclueStr.IndexOf("$,") < 0)
            {
                str = str.Replace("$", "");
            }
            if (exclueStr.IndexOf("*,") < 0)
            {
                str = str.Replace("*", "");
            }
            if (exclueStr.IndexOf(".,") < 0)
            {
                str = str.Replace(".", "");
            }
            if (exclueStr.IndexOf("=,") < 0)
            {
                str = str.Replace("=", "");
            }
            if (exclueStr.IndexOf("(,") < 0)
            {
                str = str.Replace("(", "");
            }
            if (exclueStr.IndexOf("),") < 0)
            {
                str = str.Replace(")", "");
            }
            if (exclueStr.IndexOf("!,") < 0)
            {
                str = str.Replace("!", "");
            }
            if (exclueStr.IndexOf("@,") < 0)
            {
                str = str.Replace("@", "");
            }
            if (exclueStr.IndexOf("#,") < 0)
            {
                str = str.Replace("#", "");
            }
            if (exclueStr.IndexOf("^,") < 0)
            {
                str = str.Replace("^", "");
            }
            if (exclueStr.IndexOf("|,") < 0)
            {
                str = str.Replace("|", "");
            }
            if (exclueStr.IndexOf(":,") < 0)
            {
                str = str.Replace(":", "");
            }
            if (exclueStr.IndexOf("xp_cmdshell,") < 0)
            {
                str = str.Replace("xp_cmdshell", "");
            }
            if (exclueStr.IndexOf("/add,") < 0)
            {
                str = str.Replace("/add", "");
            }
            str = str.Replace("exec master.dbo.xp_cmdshell", "");
            str = str.Replace("net localgroup administrators", "");
            str = str.Replace("select", "");
            str = str.Replace("insert", "");
            str = str.Replace("delete from", "");
            str = str.Replace("drop table", "");
            str = str.Replace("update", "");
            str = str.Replace("truncate", "");
            str = str.Replace("from", "");
            return str;
        }