C# (CSharp) SSCMS.Core.Utils AttackUtils Exemples

Langage de programmation: C# (CSharp)

Espace de nommage/Pack: SSCMS.Core.Utils

Class/Type: AttackUtils

Exemples au hotexamples.com: 2

C# (CSharp) SSCMS.Core.Utils AttackUtils - 2 exemples trouvés. Ce sont les exemples réels les mieux notés de SSCMS.Core.Utils.AttackUtils extraits de projets open source. Vous pouvez noter les exemples pour nous aider à en améliorer la qualité.

Méthodes fréquemment utilisées

Afficher Cacher

FilterSql(1)

FilterXss(1)

Méthodes fréquemment utilisées

FilterSql (1)

FilterXss (1)

Associées

NSColorList

PlatformProcessInfo

CAffectationsEtapeWorkflow

CourseFormModel

BmsProgressStatus

MappedParameters

BLL.UserInfoBLL

QualityControlManageIn

IWebPage

KGFIGui2D

Related in langs

Readingtype (PHP)

make_desc_time (PHP)

hashset (C++)

FCEU_de16lsb (C++)

GetDivisors (Go)

Initialize (Go)

FindManager (Java)

Util (Java)

resol (Python)

readzip (Python)

Exemple #1

0

Afficher le fichier

public static async Task <Dictionary <string, object> > SaveAttributesAsync(IPathManager pathManager, Site site, List <TableStyle> styleList, NameValueCollection formCollection, List <string> dontAddAttributes) { var dict = new Dictionary <string, object>(); if (dontAddAttributes == null) { dontAddAttributes = new List <string>(); } foreach (var style in styleList) { if (ListUtils.ContainsIgnoreCase(dontAddAttributes, style.AttributeName)) { continue; } //var theValue = GetValueByForm(style, site, formCollection); var theValue = formCollection[style.AttributeName] ?? string.Empty; var inputType = style.InputType; if (inputType == InputType.TextEditor) { theValue = await pathManager.EncodeTextEditorAsync(site, theValue); theValue = UEditorUtils.TranslateToStlElement(theValue); } if (inputType != InputType.TextEditor && inputType != InputType.Image && inputType != InputType.File && inputType != InputType.Video && !StringUtils.EqualsIgnoreCase(style.AttributeName, nameof(Content.LinkUrl))) { theValue = AttackUtils.FilterXss(theValue); } dict[style.AttributeName] = theValue; if (style.IsFormatString) { var formatString = TranslateUtils.ToBool(formCollection[style.AttributeName + "_formatStrong"]); var formatEm = TranslateUtils.ToBool(formCollection[style.AttributeName + "_formatEM"]); var formatU = TranslateUtils.ToBool(formCollection[style.AttributeName + "_formatU"]); var formatColor = formCollection[style.AttributeName + "_formatColor"]; var theFormatString = ContentUtility.GetTitleFormatString(formatString, formatEm, formatU, formatColor); dict[GetFormatStringAttributeName(style.AttributeName)] = theFormatString; } //if (inputType == InputType.Image || inputType == InputType.File || inputType == InputType.Video) //{ // var attributeName = GetExtendAttributeName(style.AttributeName); // dict[attributeName] = formCollection[attributeName]; //} } return(dict); }

Exemple #2

0

Afficher le fichier

Fichier : SqlUtils.cs Projet : apphost/sscms

public static string GetInStr(DatabaseType databaseType, string columnName, string inStr) { var retVal = string.Empty; inStr = AttackUtils.FilterSql(inStr); if (databaseType == DatabaseType.MySql) { retVal = $"INSTR({columnName}, '{inStr}') > 0"; } else if (databaseType == DatabaseType.SqlServer) { retVal = $"CHARINDEX('{inStr}', {columnName}) > 0"; } else if (databaseType == DatabaseType.PostgreSql) { retVal = $"POSITION('{inStr}' IN {columnName}) > 0"; } return(retVal); }