High 7.1
2025-12-18< 3.8.7
CVE-2025-60182
Support Board for WordPress
Minimum safe version
3.8.7
Update to 3.8.7 or later to address 15 fixable vulnerabilities
Latest available3.4.8 ✗
High 7.1
2025-08-20< 3.8.1
CVE-2025-54027
High 8.1
2025-08-20< 3.8.1
CVE-2025-54031
Critical 9.8
2025-07-08< 3.8.1
Support Board <= 3.8.0 - Unauthenticated Arbitrary File Deletion
Critical 9.8
2025-07-08< 3.8.1
WordPress Support Board Plugin <= 3.8.0 is vulnerable to Broken Access Control
N/A
< 1.2.9
Support Board < 1.2.9 - Authenticated Stored Cross-Site Scripting
N/A
< 3.4.2
SupportBoard < 3.4.2 - Multiple Authenticated SQLi
N/A
2019-06-11< 1.2.9
Support Board <= 1.2.8 - Authenticated Stored Cross-Site Scripting
N/A
2022-01-19< 3.4.2
Support Board <= 3.4.1 - Authenticated SQL Injection
N/A
2019-06-25< 1.2.9
WordPress Support Board premium plugin <= 1.2.8 - Stored Cross-Site Scripting (XSS) vulnerability
N/A
2022-01-19< 3.4.2
WordPress SupportBoard plugin <= 3.4.1 - Multiple Authenticated SQL Injection (SQLi) vulnerabilities
Medium 5.4
2018-10-17< 1.2.4
CVE-2018-18373
Critical 9.8
2021-09-20< 3.3.5
CVE-2021-24741
Medium 5.4
2021-11-08< 3.3.5
CVE-2021-24807
High 8.1
2022-02-28< 3.3.6
CVE-2021-24823