Description
This form is served from an insecure page (http) page. This page could be hijacked using a Man-in-the-middle attack and an attacker can replace the form target.
Remediation
The form should be served from a secure (https) page.
Related Vulnerabilities
WPEngine _wpeprivate/config.json information disclosure
WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.15)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491)
WordPress Plugin Tinymce Thumbnail Gallery 'href' Parameter Information Disclosure (1.0.7)