Reflected Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Orders Tracking for WooCommerce plugin (versions <= 1.1.9).
Update the WordPress Orders Tracking for WooCommerce plugin to the latest available version (at least 1.1.10).