Security alert – PHPMailer Exploit [Critical] temporary fix

A very serious exploit was discovered recently. It affects the most used mailing script in the world, PHPMailer. The exploit allows the potential abuser to execute commands and use malicious code. It affects almost every website online, since it is the most used  script to send emails in WordPress, Joomla, Drupal, CS Cart and almost every popular website script.

There is no fix so far, and a patch deployed by the PHPMailer team has not fixed the issue. We strongly advice you to restrict access to class.phpmailer.php until a fix is found to avoid any security risks.

This can be done via FTP and setting 000 permissions, or simply by renaming the file.

Please note that this will make some of the mail functions of your website unavailable and might cause errors.

 

We will get back when a permanent fix is released.

Master of SEO, server management specialist, guru of web development. A living legend.

Leave a Reply

Next ArticleEmail delivery issue 550-5.7.1 not meet IPv6 guidelines