java防止sql注入
发布时间:2020-05-24 22:06:41 所属栏目:Java 来源:互联网
导读:java防止sql注入
|
下面是脚本之家 jb51.cc 通过网络收集整理的代码片段。 脚本之家小编现在分享给大家,也给大家做个参考。 public final static String filterSQLInjection(String s) {
if (s == null || "".equals(s)) {
return "";
}
try {
s = s.trim().replaceAll("</?[s,S][c,C][r,R][i,I][p,P][t,T]>?","");//script
s = s.trim().replaceAll("[a,A][l,L][e,E][r,R][t,T](","").replace(""","");// alert
s = s.trim().replace(".swf","").replaceAll(".htc","");
s = s.trim().replace(".phpb","").replaceAll(".aspb","");
s = s.trim().replace("document.","").replaceAll("[e,E][v,V][a,L](","");
s = s.trim().replaceAll("'","").replaceAll(">","");
s = s.trim().replaceAll("<","").replaceAll("=","");
s = s.trim().replaceAll(" [o,O][r,R]","");
s = s.trim().replaceAll("etc/","").replaceAll("cat ","");
s = s.trim().replaceAll("/passwd ","");
s = s.trim().replaceAll("sleep(","").replaceAll("limit ","").replaceAll("LIMIT ","");
s = s.trim().replaceAll("[d,D][e,E][l,E][t,T][e,E] ","");// delete
s = s.trim().replaceAll("[s,S][e,E][c,C][t,T] ","");// select;
s = s.trim().replaceAll("[u,U][p,P][d,D][a,A][t,"");// update
s = s.trim().replaceAll("[d,L][a,A][y,Y] ","").replaceAll("waitfor ","");
s = s.trim().replaceAll("print(","").replaceAll("md5(","");
s = s.trim().replaceAll("cookie(","").replaceAll("send(","");
s = s.trim().replaceAll("response.","").replaceAll("write(","")
.replaceAll("&","");
} catch (Exception e) {
e.printStackTrace();
return "";
}
return s;
}
以上是脚本之家(jb51.cc)为你收集整理的全部代码内容,希望文章能够帮你解决所遇到的程序开发问题。 如果觉得脚本之家网站内容还不错,欢迎将脚本之家网站推荐给程序员好友。 (编辑:安卓应用网) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |
相关内容