False Positive on AWS WAF F5 Managed Rule F5#OWASP_Managed#rule_div_tag__behavior__Parameter__AllQueryArguments_Body

From the description 'a div tag with a base64 encoded image.' This is a false positive based on the Attack signature regular expression matching on a random string in the bas64 string. You can disable that specific attack signature, but since you cannot control what string occurs when an image is converted to base 64, it would be difficult to prevent. We could give you more info with an example of the request.