The Royal Elementor Addons and Templates plugin for WordPress has a security vulnerability in versions 1.3.87 and below. This is because the wpr_update_form_action_meta function does not properly validate nonces. This could allow hackers to post fake information if they can trick a site administrator into clicking on a link.