Someone has used an exploit to get the link to my servers web permissions editor and has changed and given people groups that shouldn’t have them. Please help.

That is not quite how the editor system works. It is completely safe to share editor links in public, as people have to run the lp applyedits command for any changes to take effect.
Now that being said this calls you have bigger issues on your server/network, if someone was able to create an editor session and make changes you should be worrying about how they got access to it in the first place, and patch that pothole. Just as they ran the editor commands they could have also run any other LP command.

If they exploited your server in such a way, you have bigger problems than luckperms.