The Royal Elementor Addons and Templates plugin for WordPress has a security issue that could allow attackers to remove items from user wishlists without proper authorization. This can happen if a site administrator is tricked into clicking on a link.