C#程序中防SQL注入的简单字符串替换

C#程序中防SQL注入的简单字符串替换

Acc = Acc.Replace("[", "……");

Acc = Acc.Replace("]", "……");

Acc = Acc.Replace("and", "");

Acc = Acc.Replace("=", "｛");

Acc = Acc.Replace("<", "｝");

Acc = Acc.Replace(">", "｝");

Acc = Acc.Replace(";", "：");

Acc = Acc.Replace("'", "’");

Acc = Acc.Replace("&", "’");

Acc = Acc.Replace("'", "’");

Acc = Acc.Replace("--", "’");

Acc = Acc.Replace("==", "’");

Acc = Acc.Replace("'", "’");

Acc = Acc.Replace("'", "’");

Acc = Acc.Replace("/", "");

Acc = Acc.Replace("script", "");

Acc = Acc.Replace("SCRIPT", "‘");

Acc = Acc.Replace("Script", "’");

Acc = Acc.Replace("script", "’");

Acc = Acc.Replace("object", "’");

Acc = Acc.Replace("OBJECT", "’");

Acc = Acc.Replace("Object", "’");

Acc = Acc.Replace("object", "’");

Acc = Acc.Replace("applet", "’");

Acc = Acc.Replace("APPLET", "’");

Acc = Acc.Replace("Applet", "’");

Acc = Acc.Replace("applet", "’");

Acc = Acc.Replace("select", "’");

Acc = Acc.Replace("execute", "’");

Acc = Acc.Replace("exec", "’");

Acc = Acc.Replace("join", "’");

Acc = Acc.Replace("union", "’");

Acc = Acc.Replace("where", "’");

Acc = Acc.Replace("insert", "’");

Acc = Acc.Replace("delete", "’");

Acc = Acc.Replace("update", "’");

Acc = Acc.Replace("like", "’");

Acc = Acc.Replace("drop", "’");

Acc = Acc.Replace("create", "’");

Acc = Acc.Replace("rename", "’");

Acc = Acc.Replace("count", "’");

Acc = Acc.Replace("chr", "’");

Acc = Acc.Replace("mid", "’");

Acc = Acc.Replace("truncate", "’");

Acc = Acc.Replace("nchar", "’");

Acc = Acc.Replace("char", "’");

Acc = Acc.Replace("alter", "z");

Acc = Acc.Replace("cast", "z");

Acc = Acc.Replace("exists", "z");

查看全文

相关阅读:
每天改进一点点之改进日志收集系统原创：赵建鹏雪球工程师团队 2018-03-23
Locust
('' or 60)
python动态获取对象的属性和方法（转载）
MySQL 8.0: From SQL Tables to JSON Documents (and back again)
词典型遍历键顺序
 子系统权限栏目自己生成自己控制
 Redis 单线程却能支撑高并发
 OPPO数据中台之基石：基于Flink SQL构建实数据仓库
 技术干货丨如何在VIPKID中构建MQ服务

原文地址：https://www.cnblogs.com/huyueping/p/3101455.html