Plesk is key ... it's where you went to include other paths for open_basedir, correct?
Of the panels that exist, plesk is ultra-secure ... to the point of making
it difficult to set up a moodle.
Installation of the moodle via plesk panel ... probably tricky.
That would acquire moodle core code.
In your code directory, there should be a hidden .git directory.
In that directory a config file.
What does [remote "origin" URL have?
Also branch version.
In code root, there is a version.php file.
fgrep '$release' version.php
Shows what? Looking for the $release line.
Also, in the code directory there is a config.php file.
We get a peek at:
Using plesk file browser, what's the listing of config.php and version.php files that shows ownerships/permissions?
-r--r--r--. 1 apache apache 897 Aug 27 14:19 config.php
The -r stuff permissions and after the 1 word word is owner and group.
Do you have additional apache protections ... like a web application firewall turned on? mod_secure comes to mind ...
That has log flles of it's own as well as it's own rules.
Check those log files and you might see some rule has kicked in on actions you are trying to do. Errors that mod_security or similar return are really not accurate ... those tend to try and hide themselves from something poking/probing your site.