The Elementor Addons by Livemesh plugin for WordPress has a security issue that allows hackers to insert harmful scripts into pages. This can be done through the ‘carousel_skin’ feature of the Posts Carousel widget, and affects all versions up to 8.3.4. This vulnerability allows attackers with contributor-level or higher access to add these scripts, which can be executed whenever a user views the page.