Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities were discovered by John Jefferson Li in the WordPress Support Board plugin (versions <= 3.3.3).
Update the WordPress Support Board plugin to the latest available version (at least 3.3.4).