js 去空格和替换sql注入
2018-5-15 0:00:00
function Trim(str) {
var result;
result = str.replace(/(^\s+)|(\s+$)/g, "");
result = result.replace(/\s/g, "");
return result;
}
function DelSql(str)
{
var re=/select|update|delete|truncate|join|union|exec|insert|drop|count|'|"|;|>|<|%/gi;
str= str.replace(re,'');
return str;
}
function DelKongGeHeSql(str)
{
str=Trim(str);
str=DelSql(str);
return str;
}