Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- private String deleteEscapeCharacters (Object obj) {
- String str = (String)obj;
- str = str.replaceAll("'", "''");
- str = str.replaceAll("select", "");
- str = str.replaceAll("drop", "");
- str = str.replaceAll("insert", "");
- str = str.replaceAll("delete", "");
- str = str.replaceAll(";", "");
- str = str.replaceAll("--", "");//in MS SQL symbol "--" is comment
- return "'" + str + "'";
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
