A plugin called “Elementor Addon Elements” for the website platform WordPress has a security issue that allows sensitive information to be exposed. This can happen in all versions of the plugin up to version 1.13.8. The vulnerability is found in a specific function called “render_column” in a file called “data-table.php”. This means that someone who is logged into the website and has at least Contributor-level access can access private, pending, and draft templates, which contain sensitive information.