We host a number of WordPress websites and one of them has started to be used by bots to send spam emails. The emails are send by Contact Form 7 and use a hard coded subject line which we will have set up at some point. Unfortunately the emails are using our own email address as the credentials so we can’t tell which contact form on which site is being used to send these emails.
If at all possible I’d prefer to avoid trawling through all the forms, in all our sites to find which one’s use the specific Subject Title on the auto-responder.
Can anyone help with with a way I could run a script across all the MySql WordPress databases within phpMyAdmin to search them for the specific email subject title in question, and in so doing I could find the database, and therefore the website that has been compromised?