Is anyone else getting messages from server malware scanners about sy-inc/PHPmailer/class.phpmailer.php? I keep getting compromised (malware put in folders on my server) and the scanner software says this file and its backup are my only vulnerabilities.

Edited by

I have not heard of anyone else with that issue. The PHPMailer version in there is 5.2.8. I searched and didn't find any vulnerabilities related to the PHPMailer version.

Is it possible that is a false positive? If you are not using PHPMailer (Settings -> Mail Sending Settings), you can delete that file.

Edited by

Hi Tim, and thank you. I downloaded the github version of the file, and I have a difference. Instead of public $Host = 'localhost' in this block of code, I have
/**
* SMTP hosts.
* Either a single hostname or multiple semicolon-delimited hostnames.
* You can also specify a different port
* for each host by using this format: [hostname:port]
* (e.g. "smtp1.example.com:25;smtp2.example.com").
* You can also specify encryption type, for example:
* (e.g. "tls://smtp1.example.com:587;ssl://smtp2.example.com:465").
* Hosts will be tried in order.
* @type string
*/
public $Host = 'smtp.mijnhostingpartner.nl';

I'm guessing that I should re-install all my sytist files and that will update?

Edited by

You can just replace those files with the files from the Sytist update or installation files. If you don't have those files you can send me an email and I can send you the files.

Edited by

Thanks Tim. It's probably some site I tried years ago as a smtp server and I just don't remember it, but I'd feel better with authentic files in place.

Edited by