- Go to Configuration -> Rules management and disable the option to apply filters to "Super users" group (you can also add "Administrator" or any other desired group) .
- Download and install 3.1.6 version again. Yesterday I added some changes to avoid this situation. Also go to Configuration -> Waf configuration -> Filter exceptions -> XSS tab and set the "strip all tags" to No. Delete the "img" tag and save changes.
I really apologize for this inconveniences; since this version all rules are also applied to admin accounts to avoid dangerous attacks conducted against them and obviously some filters are giving false positives. Yesterday I was notified about this and I modified the 3.1.6 version, so following any of the points above should solve your issues.
Hi Jose, just like wallyhow, the problem is SQL injection false reporting. What works is filtering of the component. I have tried disabling user and xss but that did nothing. Only If I filter a component out (under SQL injection - SQL pattern filter) do I resolve the issue.