Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Asif Nawaz Minhas in WordPress Business Hours Indicator plugin (versions <= 2.3.4).
Update the WordPress Business Hours Indicator plugin to the latest available version (at least 2.3.5).