sql安全注入

代码/鹤壁市长热线_20160725/Code/HBSMayorHotline/Web/WebSite/PeopleCondition.aspx.cs

@@ -22,7 +22,7 @@ public partial class WebSite_PeopleCondition : System.Web.UI.Page
         string[] _operations = GetSearchItems(searchItems);
         foreach (string s in _operations)
         {
-            if (SZRX.Common.ValidateUtil.isSafeSqlCode(s))
+            if (!SZRX.Common.ValidateUtil.isSafeSqlCode(s))
             {
                 return "参数不符合规范";
             }

代码/鹤壁市长热线_20160725/Code/HBSMayorHotline/Web/WebSite/WorkSearch.aspx.cs

@@ -50,7 +50,7 @@ public partial class WebSite_WorkSearch : System.Web.UI.Page
         string[] _operations = GetSearchItems(searchItems);
         foreach (string s in _operations)
         {
-            if (SZRX.Common.ValidateUtil.isSafeSqlCode(s))
+            if (!SZRX.Common.ValidateUtil.isSafeSqlCode(s))
             {
                 return "参数不符合规范";
             }