Hey.
Okay, this is not really a bug so to speak, but something important every website/forum should enforce these days. SSL/TLS encryption, instead of unencrypted HTTP transport, which can easily be sniffed and sensitive information can get into the wrong people's hands.
I'm pretty sure you all heard/read about the recent new EU GDPR regulations that went into effect at the end of May this year. Here in Germany it is expected that you use SSL/TLS encryption on your websites and as a commercial website you are basically legally bound to having a proper encryption on your website, otherwise you can face a hefty fine of like 10k+€.
Luckily SSL/TLS encryption certificates are easy to obtain and with Lets Encrypt there is a great provider who gives out certificates without charging any money. The process of getting a certificate and managing it is straight forward and mostly automated. (There's a command line tool for Linux-based systems that automatically obtains the certificate and modifies the configuration of the webserver to use it.)
I'd highly appreciate if you point your system admin to
https://letsencrypt.org/ and get this set up soon.
Edit
After some discussions in the IRC channel I dug a bit more, because of the EU GDPR laws and they apply to companies
AND website owners. While private website owners might not comply completely with everything, they still have to make sure to protect the personal data of their users that live in the EU. Since TASVideos obviously servers people from the EU it applies.
Here's a detailed article about what things are required:
https://www.disclaimertemplate.com/the-gdpr-affects-your-website-how-you-can-comply-avoid-fines/