The Royal Elementor Addons plugin for WordPress has a security issue in versions up to 1.3.70. If the plugin is used with the MailChimp block enabled, then an unauthenticated attacker could be able to find out the site’s MailChimp API key. This key could be used to access the site’s MailChimp account. To protect the site, we recommend resetting the MailChimp API key if a vulnerable version of the plugin is being used.