A PHPMailer vulnerability leaves millions of websites vulnerable to remote exploit

A critical vulnerability, tracked as CVE-2016–10033, affects all versions of PHPMailer before 5.2.18 Dawid Golunski, security expert from Legal Hackers, has discovered a flaw in PHPMailer that could be exploited by a remote attacker to execute arbitrary code in the context of the web server and compromise the target web application. PHPMailer if one of the…