SQL注入处理
/// <summary>
/// SQL注入处理
/// </summary>
/// <param name="rowFilter"></param>
/// <returns></returns>
public static string DtRowFilter(string rowFilter)
{
return rowFilter.Replace("\'", "''");
}