摘要:
public bool SqlSecret(string sql) { bool retbool=true; sql = sql.ToUpper(); if (sql.Length == 0) return false; string strfileter = "exec,xp_,sp_,declare,cmd,union,//,..,0x,',--,;,delete,update,>,<,script,insert,select"; strfileter = strfileter.ToUpper(); string[] arrSqlError = st 阅读全文
posted @ 2012-08-21 16:31
尹成亮
阅读(136)
评论(0)
推荐(0)
浙公网安备 33010602011771号