/// <summary> /// 从URL获取值(字符串) /// </summary> public static string GetValueFromUrl(string key) { string keyvalue = HttpContext.Current.Request.QueryString[key]; if (keyvalue != null) { keyvalue = KillBadString(keyvalue); return keyvalue; } return ""; } /// <summary> /// 从URL获取值(整型) /// </summary> /// <param name="key"></param> /// <returns></returns> public static int GetIntValueFromUrl(string key) { string keyvalue = HttpContext.Current.Request.QueryString[key]; int result = 0; if (int.TryParse(keyvalue, out result)) { return result; } return result; } /// <summary> /// 过滤SQL敏感字符 /// </summary> /// <param name="str"></param> /// <returns></returns> public static string KillBadString(string str) { if (str == null || str.Length == 0) { return ""; } str = System.Text.RegularExpressions.Regex.Replace(str, "'", "''"); return str; }