zoukankan      html  css  js  c++  java

  • 过滤SQL和HTML敏感字符

    /// <summary>过滤SQL和HTML敏感字符
    ///
    /// </summary>
    /// <param name="str"></param>
    /// <returns></returns>
    public static string GetSafeSqlandHtml(string str)
    {
    if (string.IsNullOrEmpty(str))
    return string.Empty;
    str = Regex.Replace(str, @"<applet[^>]*?>.*?</applet>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<body[^>]*?>.*?</body>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<embed[^>]*?>.*?</embed>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<frame[^>]*?>.*?</frame>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<script[^>]*?>.*?</script>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<frameset[^>]*?>.*?</frameset>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<html[^>]*?>.*?</html>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<iframe[^>]*?>.*?</iframe>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<style[^>]*?>.*?</style>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<layer[^>]*?>.*?</layer>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<link[^>]*?>.*?</link>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<ilayer[^>]*?>.*?</ilayer>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<meta[^>]*?>.*?</meta>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<object[^>]*?>.*?</object>", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"-->", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @"<!--.*", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, "eXeC", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, "VaRcHaR", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, "dEcLaRe", "", RegexOptions.IgnoreCase);
    str = Regex.Replace(str, @";", string.Empty);
    str = Regex.Replace(str, @"'", string.Empty);
    str = Regex.Replace(str, @"&", string.Empty);
    str = Regex.Replace(str, @"%20", string.Empty);
    str = Regex.Replace(str, @"--", string.Empty);
    //str = Regex.Replace(str, @"==", string.Empty);
    str = Regex.Replace(str, @"<", string.Empty);
    str = Regex.Replace(str, @">", string.Empty);

    return str;
    }
  • 相关阅读:
    与众不同 windows phone (12) Background Task(后台任务)之 PeriodicTask(周期任务)和 ResourceIntensiveTask(资源密集型任务)
    直观理解图像的傅里叶变换
    简明Python3教程 13.面向对象编程
    简明Python3教程 4.安装
    简明Python3教程 8.控制流
    简明Python3教程 11.数据结构
    简明Python3教程 16.标准库
    简明Python3教程 12.问题解决
    简明Python3教程 9.函数
    简明Python3教程 2.序言
  • 原文地址:https://www.cnblogs.com/pangzhixing/p/6596420.html
Copyright © 2011-2022 走看看