I’ve done activating the pagerule and temporarily set into simulate mode. Reviewing the firewall logs and found numerous events came from a legitimate client on (OWASP Block (981176). I’m not sure yet what is the best thing to do. Either create a rule to allow this request in the firewall or set into block mode and apply fixes to the affected path.
I hope someone could help me what is the best thing to do.