[BUG] [SECURITY] Update feature does not use HTTPS
Posted: 28 Nov 2017, 00:23
1. The web site uses SSL but the in-app updater uses unencrypted port 80 HTTP transfers, making updates subject to MITM attack by malicious public access point
2. Forum search feature seems broken:
"The following words in your search query were ignored because they are too common words: https update.
You must specify at least one word to search for. Each word must consist of at least 3 characters and must not contain more than 14 characters excluding wildcards."
2. Forum search feature seems broken:
"The following words in your search query were ignored because they are too common words: https update.
You must specify at least one word to search for. Each word must consist of at least 3 characters and must not contain more than 14 characters excluding wildcards."