The Colibri Page Builder plugin for WordPress has a security vulnerability in versions 1.0.319 and below. This means that people who are logged in and have contributor-level access or higher can add harmful web scripts to pages. These scripts will run whenever someone opens the affected page.