== Ask Yourself Whether

* the http connection is encrypted or not.
* the recipient is not allowed to receive some of the data you send.
* the data sent might be dangerous (example: it contains unvalidated user input).
* an uncontrolled number of requests might be sent. For example, a request might be sent every time a user performs an action, and this action is not limited.

You are at risk if you answered yes to any of those questions.