ansaurus

Question

Answer 1

+6 A:

It seems you trying to prevent a sql injection attack. For this use Parameterized Queries this way you don't need to check for injections.

JeremySpouken 2010-03-08 21:21:08

+1, what other `bad` statements will the regex miss?

KM 2010-03-08 21:27:18

Yes, I know about SP, i just do some research for studies about regex to. Thanks for the link, I would read it.

Vytas999 2010-03-08 21:29:29

Answer 2

+2 A:

string regexForDrop = @"^((%27)|'|(\-\-))\s*(d|%64|%44)(r|%72|%52)(o|%6F|%4F)(p|%70|%50).*$";

? or without the $

RC 2010-03-08 21:22:34

Great. Thank You !

Vytas999 2010-03-08 21:28:26

+1, whatever @Vytas999 reason, you wrote the code to solve it

KM 2010-03-08 21:34:08

Answer 3

+1 A:

Remove the '$' at the end of your regular expression. $ matches the end of the input string.

cleek 2010-03-08 21:26:11

Simple regex question (C#, SQL Server)