The Elementor Addon Elements plugin for WordPress has a security issue that can affect all versions up to 1.13.3. This is because the plugin’s Twitter Widget does not properly clean up user input and output, which can allow attackers with contributor-level or higher permissions to add harmful code to pages that will run when someone visits the page.