Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by m0ze in WordPress Funnel Builder by CartFlows plugin (versions <= 1.6.12).
Update the WordPress Funnel Builder by CartFlows plugin to the latest available version (at least 1.6.13).