Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Raul in WordPress WPCargo Track & Trace plugin (versions <= 6.9.4).
Update the WordPress WPCargo Track & Trace plugin to the latest available version (at least 6.9.5).