过滤非法字符

/// <summary>
  /// 过滤输入信息
  /// </summary>
  /// <param name="text">内容</param>
  /// <param name="maxLength">最大长度</param>
  /// <returns></returns>
  /// 替换不正常字符
  /// 记得引用 using System.Text.RegularExpressions;
  public static string InputText(string text, int maxLength)
  {
  #region
  text = text.Trim();
  if (string.IsNullOrEmpty(text))
  return string.Empty;
  if (text.Length > maxLength)
  text = text.Substring(0, maxLength);
  text = Regex.Replace(text, "[\\s]{2,}", " "); //two or more spaces
  text = Regex.Replace(text, "(<[b|B][r|R]/*>)+|(<[p|P](.|\\n)*?>)", "\n"); //<br>
  text = Regex.Replace(text, "(\\s*&[n|N][b|B][s|S][p|P];\\s*)+", " "); //&nbsp;
  text = Regex.Replace(text, "<(.|\\n)*?>", string.Empty); //any other tags
  text = text.Replace("'", "''");
  return text;
  #endregion
  }

 

 

单步调试看看数据
过滤
在后台设置过滤字符
void Application_BeginRequest(object sender, EventArgs e)
{
  for (int i=0; i < Request.Form.Count;i++)
  {
  if (Request.Form[i].ToString() == "__VIEWSTATE") continue;
  if (IsM(Request.Form[i].ToString()))
  {
  Response.Write("您提交的内容中含有非法字符.");
  Response.End();
  }

  }  
}
protected bool IsM(string InText)
{
  string word = @"";
  if (InText == null)
  return false;
  if (Regex.IsMatch(InText,word))
  return true;
  return false;
}