Hello,
From time to time we see FP mod_sec rules and need to disable them for a user or on all servers.
But what is the best way to report it to you so you can fix it?
In this case it's this rule for Apache:
77230780: IM360 WAF: XSS vulnerability in Ultimate Member - User Profile & Membership plugin 2.0.29 and before 2.0.28 for WordPress (CVE-2018-17866)||MVN:ARGS_POST:um_options[welcome_email]||MV: style=\"max-width: 560px; padding: 20px; background: #ffffff; border-radius: 5px; margin: 40px auto; font-family: Open Sans,Helvetica,Arial; font-size: 15px; color: #666;\">\r\n style=\"color: #444444; font-weight: normal;\">\r\n style=\"text-align: center; font-weight: 600; font-size: 26px; padding: 10px 0; border-bottom: solid 3px #eeeeee;\">{site_name}>\r\n style=\"clear: both;\">\xc2\xa0>\r\n>\r\n style=\"padding: 0 30px 30px 30px; border-bottom: 3px solid #eeeeee;\">\r\n style=\"padding: 30px 0; font-size: 24px; text-align: center; line-height
Customer has version 2.1.2 of this WP plugin.