Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++ version 8.8.3, which originates from DLL hijacking and could lead to the execution of malicious code...

PT-2025-39673

Name of the Vulnerable Software and Affected Versions Notepad++ versions 8.8.3 and earlier Description Notepad++ version 8.8.3 contains a DLL hijacking flaw. This allows an attacker to replace original DLL files, such as NppExport.dll, with malicious versions, leading to arbitrary code execution...

Exploit for CVE-2025-49144

🎯 CVE-2025-49144PoC - Test Your Security Skills Easily !Do...

CVE-2025-49144

Notepad++ is a free and open-source source code editor. In versions 8.8.1 and prior, a privilege escalation vulnerability exists in the Notepad++ v8.8.1 installer that allows unprivileged users to gain SYSTEM-level privileges through insecure executable search paths. An attacker could use social...

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++ 8.8.1 and earlier versions, which is caused by an elevation of privilege in the installer due to an insecure executable search path...

Exploit for Uncontrolled Search Path Element in Notepad-Plus-Plus Notepad\+\+

⚠️ IMPORTANT NOTICE: For security research and educational p...

CVE-2023-47452

An Untrusted search path vulnerability in notepad++ 6.5 allows local users to gain escalated privileges through the msimg32.dll file in the current working directory...

PT-2023-32639 · Notepad++ · Notepad++

Name of the Vulnerable Software and Affected Versions: NotePad++ versions up to 8.1 Description: A problematic issue was found in NotePad++, affecting an unknown functionality of the file dbghelp.exe. This leads to an uncontrolled search path. The issue can be exploited locally. Recommendations:...

The vulnerability of the CharDistributionAnalysis::HandleOneChar function in the NotePad++ text editor allows a hacker to gain unauthorized access to protected information.

The vulnerability of the CharDistributionAnalysis::HandleOneChar function in the NotePad++ text editor is related to the execution of operations outside the buffer’s boundaries in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Vulnerabilities fixed in Notepad++

Vulnerabilities have been fixed in Notepad++. A malicious person could exploit the vulnerabilities to gain access to memory locations to which the malicious party is not authorized, or potentially execute arbitrary code with privileges of the victim. Successful exploitation requires the malicious...

The vulnerability of the FileManager::detectLanguageFromTextBegining() function in the Notepad++ text editor allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the FileManager::detectLanguageFromTextBegining function in the Notepad++ text editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Utf8_16_Read::convert function in the Notepad++ text editor allows a hacker to execute arbitrary code.

The vulnerability of the Utf816Read::convert function in the Notepad++ text editor is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code by having the user open a specially crafted file...

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++, which stems from a heap buffer read overflow vulnerability in the FileManager::detectLanguageFromTextBegining function...

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++, which stems from a heap buffer write overflow vulnerability in the Utf816Read::convert function...

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++, which stems from a global buffer read overflow vulnerability in the nsCodingStateMachine::NextStater function...

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++ due to a global buffer read overflow vulnerability in the CharDistributionAnalysis::HandleOneChar function...

PT-2023-4779 · Notepad++ · Notepad++

Name of the Vulnerable Software and Affected Versions: Notepad++ versions 8.5.6 and prior Description: The issue is related to a global buffer read overflow in the nsCodingStateMachine::NextStater function. This may potentially be used to leak internal memory allocation information. The...

N. Korean Lazarus Group Targets Microsoft IIS Servers to Deploy Espionage Malware

The infamous Lazarus Group actor has been targeting vulnerable versions of Microsoft Internet Information Services IIS servers as an initial breach route to deploy malware on targeted systems. The findings come from the AhnLab Security Emergency response Center ASEC, which detailed the advanced...

Notepad++ 缓冲区错误漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++ v8.4.1, which originates from a stack overflow via the component Finder::add...

CVE-2022-32168 notepad-plus-plus - DLL Hijacking

Notepad++ versions 8.4.1 and before are vulnerable to DLL hijacking where an attacker can replace the vulnerable dll UxTheme.dll with his own dll and run arbitrary code in the context of Notepad++...