python 非法字符处理

2023年2月17日 53次阅读来源: 有勇气的牛排

有勇气的牛排
官方地址: https://www.couragesteak.com/

过滤非法字符

def sql_filter(sql, max_length=20):
    dirty_stuff = ["\"", "\\", "/", "|", "&", "*", "'", "=", "-", "#", ";", "<", ">", "+", "%", "$", "(", ")", "%", "@","!"]
    for stuff in dirty_stuff:
        sql = sql.replace(stuff, "")
    return sql[:max_length]

username = "1234567890!@#!@#!@#$%======$%|&***"

username = sql_filter(username)  # SQL注入
print(username)

# 输出结果是:1234567890

检测是否包含非法字符

import re

# username = "1234567890!@#!@#!@#$%======$%|&***"
username = "1234567890*"

# 检测到非法字符进入if
if not re.search(u'^[_a-zA-Z0-9\u4e00-\u9fa5]+$', username):
    msg = u"用户名不可以包含非法字符(!,@,#,$,%...)"
    print(msg)

参考：
https://www.cnblogs.com/cybermat/articles/473314.html
https://blog.csdn.net/weixin_30707875/article/details/99341309

    原文作者：有勇气的牛排
    原文地址: https://blog.csdn.net/zx77588023/article/details/106746930
    本文转自网络文章，转载此文章仅为分享知识，如有侵权，请联系博主进行删除。