Security alert – PHPMailer Exploit [Critical] temporary fix
A very serious exploit was discovered recently. It affects the most used mailing script in the world, PHPMailer. The exploit allows the potential abuser to execute commands and use malicious code. It affects almost every website online, since it is the most used script to send emails in WordPress, Joomla, Drupal, CS Cart and almost every popular website script.
There is no fix so far, and a patch deployed by the PHPMailer team has not fixed the issue. We strongly advice you to restrict access to class.phpmailer.php until a fix is found to avoid any security risks.
This can be done via FTP and setting 000 permissions, or simply by renaming the file.
We will get back when a permanent fix is released.