A vulnerability labeled as problematic has been found in gpriday Page Builder by SiteOrigin Plugin up to 2.34.3 on WordPress. The affected element is an unknown function. Such manipulation of the argument panels_data leads to cross site scripting. This vulnerability is listed as CVE-2026-13295 . The attack may be performed from remote. There is no available exploit. The affected component should be upgraded.