Lucene search
+L

9 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:32 p.m.14 views

CVE-2026-6539

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS5.5AI score0.00191EPSS
Exploits0References1
NVD
NVD
added 2026/04/30 9:16 p.m.6 views

CVE-2026-6539

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS0.00191EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/30 8:31 p.m.2 views

CVE-2026-6539

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS5.2AI score0.00191EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/30 8:31 p.m.39 views

CVE-2026-6539 Notepad++ 8.9.3 Format String Injection via nativeLang.xml

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS0.00191EPSS
Exploits0References2
CVE
CVE
added 2026/04/30 8:31 p.m.376 views

CVE-2026-6539

Notepad++ 8.9.3 is affected by a vulnerability described as a format string injection in the Find Results panel handler, triggered by a malicious nativeLang.xml language pack. The issue can be introduced by poisoned language packs distributed via community channels and triggers format string inte...

4.6CVSS5.2AI score0.00191EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/30 8:31 p.m.4 views

CVE-2026-6539 Notepad++ 8.9.3 Format String Injection via nativeLang.xml

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS6AI score0.00191EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/30 8:31 p.m.13 views

CVE-2026-6539 Notepad++ 8.9.3 Format String Injection via nativeLang.xml

Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and information disclosure by crafting a malicious nativeLang.xml language pack file. Attackers can distribute a poisoned language pack through...

4.6CVSS5.8AI score0.00191EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.15 views

Notepad++ 格式化字符串错误漏洞

Notepad++ is an open-source plain-text editor developed by Don Ho of Taiwan, China. Version 8.9.3 of Notepad++ has a vulnerability related to format strings. This vulnerability stems from format string injection in the Find Results panel’s processing logic, which may lead to denial-of-service...

4.6CVSS5.8AI score0.00191EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/30 12:0 a.m.11 views

PT-2026-36185

Name of the Vulnerable Software and Affected Versions Notepad++ version 8.9.3 Description A format string injection exists in the Find Results panel handler. This occurs when the application processes a maliciously crafted nativeLang.xml language pack file. An attacker can distribute a poisoned...

4.6CVSS5.8AI score0.00191EPSS
Exploits0References5
Rows per page
Query Builder