From 1aa9542d25cfbf0cf80d016761945383600be973 Mon Sep 17 00:00:00 2001
From: Nigel Horne <njh@bandsman.co.uk>
Date: Sun, 20 Aug 2023 15:04:26 -0700
Subject: [PATCH] Block more SQL injection attempts

---
 lib/CGI/Info.pm | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/CGI/Info.pm b/lib/CGI/Info.pm
index 1045cbb..1b86144 100644
--- a/lib/CGI/Info.pm
+++ b/lib/CGI/Info.pm
@@ -1348,7 +1348,7 @@ sub is_robot {
 		return 0;
 	}
 
-	if(($agent =~ /SELECT.+AND.+/) || ($agent =~ /ORDER BY /)) {
+	if(($agent =~ /SELECT.+AND.+/) || ($agent =~ /ORDER BY /) || ($agent =~ / OR NOT /) || ($agent =~ / AND \d+=\d+/)) {
 		$self->status(403);
 		$self->{is_robot} = 1;
 		if($self->{logger}) {