A vulnerability labeled as problematic has been found in boldthemes Bold Page Builder Plugin up to 5.6.8 on WordPress. The affected element is the function bt_bb_button . Such manipulation of the argument text leads to cross site scripting. This vulnerability is uniquely identified as CVE-2026-3694 . The attack can be launched remotely. No exploit exists.