The Primary Addon for Elementor plugin for WordPress has a security issue that could allow people to see private or draft posts created with Elementor. This vulnerability affects all versions up to 1.6.2 and is caused by a lack of restrictions on which posts can be included using the [prim_elementor_template] shortcode. This means that someone with Contributor-level access or higher could access information that they are not supposed to see.