61,827
社区成员
发帖
与我相关
我的任务
分享请发表友善的回复…
发表回复
nixiang2008 2008-07-15
- 打赏
- 举报
通过!!!多谢高手的鼎立相助!以后多多赐教………………
suyiming 2008-07-15
- 打赏
- 举报
调用
if (ChkBadWord(Request.QueryString.ToString()))
{
Response.Write("<script language='javascript'>alert('参数中存在非法数据');history.back();</script>");
Response.End();
}
winner2050 2008-07-15
- 打赏
- 举报
安全的程序不需要过滤就能防住了.
suyiming 2008-07-15
- 打赏
- 举报
// 检测字符串中是否有非法的字符,如果有,返回true
public bool ChkBadWord(string badword)
{
string[] bw = strbadword();
bool isok = false;
foreach (string str in bw)
{
if (badword.IndexOf(str) > -1)
{
isok = true;
return isok;
}
}
return isok;
}
private string[] strbadword()
{
string[] bad = new string[15];
bad[0] = "'";
bad[1] = "\"";
bad[2] = ";";
bad[3] = "--";
bad[4] = ",";
bad[5] = "!";
bad[6] = "~";
bad[7] = "@";
bad[8] = "#";
bad[9] = "$";
bad[10] = "%";
bad[11] = "^";
bad[12] = "&";
bad[13] = " ";
bad[14] = "_";
return bad;
}
