zoukankan      html  css  js  c++  java
  • java防止sql注入

    public final static String filterSQLInjection(String s) {
        if (s == null || "".equals(s)) {
            return "";
        }
        try {
            s = s.trim().replaceAll("</?[s,S][c,C][r,R][i,I][p,P][t,T]>?", "");//script
            s = s.trim().replaceAll("[a,A][l,L][e,E][r,R][t,T]\(", "").replace(""", "");// alert
            s = s.trim().replace("\.swf", "").replaceAll("\.htc", "");
            s = s.trim().replace("\.php\b", "").replaceAll("\.asp\b", "");
            s = s.trim().replace("document\.", "").replaceAll("[e,E][v,V][a,A][l,L]\(", "");
            s = s.trim().replaceAll("'", "").replaceAll(">", "");
            s = s.trim().replaceAll("<", "").replaceAll("=", "");
            s = s.trim().replaceAll(" [o,O][r,R]", "");
            s = s.trim().replaceAll("etc/", "").replaceAll("cat ", "");
            s = s.trim().replaceAll("/passwd ", "");
            s = s.trim().replaceAll("sleep\(", "").replaceAll("limit ", "").replaceAll("LIMIT ", "");
            s = s.trim().replaceAll("[d,D][e,E][l,L][e,E][t,T][e,E] ", "");// delete
            s = s.trim().replaceAll("[s,S][e,E][l,L][e,E][c,C][t,T] ", "");// select;
            s = s.trim().replaceAll("[u,U][p,P][d,D][a,A][t,T][e,E] ", "");// update
            s = s.trim().replaceAll("[d,D][e,E][l,L][a,A][y,Y] ", "").replaceAll("waitfor ", "");
            s = s.trim().replaceAll("print\(", "").replaceAll("md5\(", "");
            s = s.trim().replaceAll("cookie\(", "").replaceAll("send\(", "");
            s = s.trim().replaceAll("response\.", "").replaceAll("write\(", "")
                    .replaceAll("&", "");
        } catch (Exception e) {
            e.printStackTrace();
            return "";
        }
        return s;
    }
  • 相关阅读:
    centos 配置静态ip
    mysql常用命令
    mac 安装好mysql后密码重置
    安装Intellij Idea14/15
    freemarker 学习一 入门小例子
    获取类路径
    mysql中的int smallint 取值范围
    MySQL按照汉字的拼音排序
    Log4j 基本配置
    追加写入
  • 原文地址:https://www.cnblogs.com/lr393993507/p/5542791.html
Copyright © 2011-2022 走看看