Authenticated Stored Cross-Site Scripting (XSS) vulnerability found by Ben Armstrong (Spider Sec Ltd) in WordPress Calculated Fields Form plugin (versions <= 1.0.353).
Update the WordPress Calculated Fields Form plugin to the latest available version (at least 1.0.354)