All Wynncraft URLs seem to redirect from HTTP to HTTPS except for store.wynncraft.com. This occurred to me when I manually entered "store.wynncraft.com" into my browser, which connected me via HTTP. I was able to reproduce this in all common browsers on a Linux client and on my Android phone. The store pages handle some pretty sensitive information. I think they should ensure that their traffic is encrypted.