Browse all 3 CVE security advisories affecting odihost. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Odihost operates as a web hosting provider offering shared hosting, VPS, and domain registration services. Historically, its vulnerabilities have included remote code execution flaws in outdated control panel software, cross-site scripting issues in customer portals, and privilege escalation weaknesses in administrative interfaces. The platform has faced multiple security incidents, including a 2022 breach exposing customer credentials and server configurations. Security assessments reveal inconsistent patch management across its infrastructure, with legacy systems remaining vulnerable to known exploits. While the company has improved its incident response protocols, recurring CVEs indicate ongoing challenges in maintaining secure hosting environments for its diverse client base.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30557 | WordPress Easy 301 Redirects plugin <= 1.33 - Cross Site Request Forgery (CSRF) vulnerability — Easy 301 RedirectsCWE-352 | 4.3 | Medium | 2025-03-24 |
| CVE-2025-23487 | WordPress Easy Gallery plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability — Easy GalleryCWE-79 | 7.1 | High | 2025-03-03 |
| CVE-2024-51570 | WordPress Easy Gallery plugin <= 1.4 - SQL Injection vulnerability — Easy GalleryCWE-89 | 8.5 | High | 2024-11-09 |
This page lists every published CVE security advisory associated with odihost. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.