I have seen this in other topic, but is closed (too old i guess).
I have a new installation if Moodle 3.7 in a subdomain of mine on a shared server where I have full control of all server setting at domain level.
the problem occurs every time I try to add an image, video or anything beside text to description of courses, lecture, activity. That's making Moodle unusable.
From older posts I have gathered that mod_security could be the cause so I turned off mod_security just for the subdomain where moodle is installed: the problem vanished.
Now my questions are:
mod_security is addressing real security concerns and seems Moodle is having security loopholes that mod_security blocks and Moodle is not (apparently) addressing those. How secure Moodle is really?
What can I do from my end to use Moodle over mod_security?
Thanks in advance.