Exactly. In theory , you can intercept full name, phone numbers, credit cards, etc. via http.
Here is the very first Google link for "http https difference".
But Habrapost about how and why it works

Yes, yes, any sniffer can read packets
And that's it.
Believe me and with a secure one - I will know the password)
As the former owner of the site I say)
Everything except the password - I will learn from the Yandex metrics
Login and Password from the admin panel.
So I advise you to use one-time emails and passwords for each site

no.
but easier than what a secure connection would be.

Using the example of WI-FI
HTTP
Sending >---> anyone can read, just a program on a mobile phone >---> wifi-router >---> Internet
HTTPS
Encryption, Sending >---> anyone can read, enough two programs per mobile phone, only the data is now encrypted >---> wifi-router >---> Internet
Accordingly, you do not need to leave any of your data on such a site, all of them can be intercepted.
ESPECIALLY in open networks, such as McDuck, airport, ect

Certainly.
And not only.
With an insecure connection, anyone who fumbles a little (especially if the connection is via wifi) is able to view everything you do on this site (and even change the content in certain cases). Well, I won’t even talk about advertising from every crack :)

At your ISP, or at any node from your ISP to the target site, traffic can be intercepted and analyzed, whether it's coming over http or https. In case of incorrect network organization, it can be intercepted inside the provider's network by other subscribers of the provider, in this case, the use of https will somewhat complicate the traffic analysis procedure. In general, you should be more afraid of transferring your data to someone by the site owners (especially if they were greedy for acquiring a certificate) than by some "hackers".