Apache can be giving 403 forbidden errors if you have ModSecurity enabled and try to do something ModSecurity considers suspicious.

For example, it can happen when you submit a form which contains HTML/JS code in textarea field. This is normal operation to be performed from Admin Area -> Templates when you use online template editor section.

To avoid this, you can disable ModSecurity for your domain in hosting control panel.