Package top.tangyh.basic.xss.utils

Class XssUtils

java.lang.Object

top.tangyh.basic.xss.utils.XssUtils

public class XssUtils
extends Object

XSS 工具类， 用于过滤特殊字符

Author:

zuihou

Constructor Summary

Constructors

Constructor	Description
XssUtils()

Method Summary

Modifier and Type	Method	Description
static String	stripXssAndSql(String value)	xss校验
static String	xssClean(String paramValue, List<String> ignoreParamValueList)	跨站攻击语句过滤 方法
static String	xssClean(String paramValue, List<String> ignoreParamValueList, String param)	过滤形参

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

XssUtils

public XssUtils()

Method Details

xssClean

public static String xssClean(String paramValue,
 List<String> ignoreParamValueList)

跨站攻击语句过滤 方法

Parameters:

paramValue - 待过滤的参数

ignoreParamValueList - 忽略过滤的参数列表

Returns:

清理后的字符串

xssClean

public static String xssClean(String paramValue,
 List<String> ignoreParamValueList,
 String param)

过滤形参

Parameters:

paramValue - 待过滤的参数

ignoreParamValueList - 忽略过滤的参数列表

param - 参数名

Returns:

清理后的字符串

stripXssAndSql

public static String stripXssAndSql(String value)

xss校验

Parameters:

value - 待替换值

Returns:

替换后的值