The Royal Elementor Addons and Templates plugin for WordPress has a security issue where unauthorized users can inject external entities, which can lead to other types of attacks like remote code execution. This vulnerability affects all versions up to 1.3.980.