登 录
原帖地址:
http://blog.sina.com.cn/s/blog_69ca12330100kun6.html
对有引号的值转換:
public static String getSafeSQL(String inStr) {<br /> String result = "";<br /> try {<br /> inStr = inStr.trim();<br /> char c;<br /> int strLen = inStr.length();<br /> for (int i = 0; i < strLen; i++) {<br /> c = inStr.charAt(i);<br /> switch (c) {<br /> case '/'':<br /> result = result + "''";<br /> break;<br /> case '//':<br /> result = result + "////";<br /> break;<br /> default:<br /> result = result + String.valueOf(c);<br /> break;<br /> }<br /> }<br /> } catch (Exception e) {<br /> return "";<br /> }<br /> return result;<br /> }
抱歉!评论已关闭.