public ActionResult GetDatas(string connection, string sql, string dbType) { sql = HttpUtility.UrlDecode(sql); connection = HttpUtility.UrlDecode(connection); if (sql.Contains("delete ") || sql.Contains("update ") || sql.Contains("drop ")) { return(new JlJsonResult() { Content = JlJson.ToJson(new { Message = "涉及敏感关键字" }) }); } var ds = new DataSet(); try { JlDatabase.Fill(connection, sql, ds, null, (JlDatabaseType)Enum.Parse(typeof(JlDatabaseType), dbType)); } catch (Exception ex) { return(new JlJsonResult() { Content = JlJson.ToJson(new { Message = ex.Message }) }); } var result = CommonMethod.ConvertDataTableToList(ds.Tables[0], true); return(new JlJsonResult() { Content = JlJson.ToJson(result) }); }