The Elementor Addon Elements plugin for WordPress has a security issue called Stored Cross-Site Scripting. This means that attackers with contributor-level access or higher can add harmful code into website pages that will run when someone visits those pages. This vulnerability affects all versions of the plugin up to and including 1.12.12.