The Events Addon for Elementor plugin for WordPress has a security issue that allows attackers to inject malicious code into pages. This can happen when a user with contributor-level access or higher accesses a page that has been injected with the code.