A critical vulnerability has been discovered in PHPMailer, one of the most widely used open source PHP libraries sending emails from websites used by more than 9 Million users worldwide.