private static string sqlEncode(string sqlString)
{
string Result= "";
for (int i=0; i<sqlString.Length; i++)
Result+= (sqlString[i]=='\'' ? "\'\'" : sqlString[i]+"");
return Result;
}
{
string Result= "";
for (int i=0; i<sqlString.Length; i++)
Result+= (sqlString[i]=='\'' ? "\'\'" : sqlString[i]+"");
return Result;
}
主要是for (int i=0; i<sqlString.Length; i++)
Result+= (sqlString[i]=='\'' ? "\'\'" : sqlString[i]+"");
这一句
if sqlString(i)='\''
result+="\'\'"
else
result+=sqlString(i)
end if
next for
Dim Result As String = ""
For i As Integer = 0 To sqlString.Length
Result += IIf(sqlString.Substring(i, 1) = "''", "''''", sqlString.Substring(i, 1))
Next
Return Result End Function
Dim Result As String = ""
Dim i As Integer = 0
While i < sqlString.Length
Result += (Microsoft.VisualBasic.IIf(sqlString(i) = "'"C,"''",sqlString(i) + ""))
System.Math.Min(System.Threading.Interlocked.Increment(i),i-1)
End While
Return Result
End Function
Dim Result As String = ""
Dim i As Integer = 0
While i < sqlString.Length
Result += (Microsoft.VisualBasic.IIf(sqlString(i) = "'"C,"''",sqlString(i) + ""))
System.Math.Min(System.Threading.Interlocked.Increment(i),i-1)
End While
Return Result
End Function
--------------------------------------------
顶楼上。
Private Shared Function sqlEncode(ByVal sqlString As String) As String
Dim Result As String = ""
Dim i As Integer
For i = 0 To sqlString.Length - 1
If sqlString(i) = "'" Then
Result += "''"
Else
Result += sqlString(i)
End If
Next
Return Result
End Function
return sqlString .Replace("'", "''")
End Function