Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Bruno Halltari in WordPress Appointment Hour Booking plugin (versions <= 1.3.55).
Update the WordPress Appointment Hour Booking plugin to the latest available version (at least 1.3.56).