Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Notepad-plus-plusNotepad++*

3 matches found

CVE
CVEadded 2019/09/14 3:39 p.m.151 views

CVE-2019-16294

Notepad++ (x64) before version 7.7 is affected by CVE-2019-16294 due to SciLexer.dll (Scintilla) processing crafted Unicode in .ml files, enabling remote code execution or denial of service. Exploitation targets the SciLexer.dll component within Notepad++, with a local/remote feasibility dependin...

7.8CVSS7.8AI score0.13617EPSS
CVE
CVEadded 2026/02/03 12:50 a.m.45 views

CVE-2025-15556

The CVE concerns Notepad++ versions prior to 8.8.9 with the WinGUp updater. The root cause is that downloaded update metadata and installers are not cryptographically verified, allowing an attacker who can intercept or redirect update traffic to deliver and execute a malicious installer. This can...

7.7CVSS6.4AI score0.09124EPSS
In wild
CVE
CVEadded 2026/02/18 11:7 p.m.27 views

CVE-2026-25926

CVE-2026-25926 (Notepad++) is an Unsafe Search Path vulnerability (CWE-426) affecting Notepad++ versions prior to 8.9.2. The issue arises when launching explorer.exe without an absolute path, allowing an attacker who controls the process working directory to execute a malicious explorer.exe, pote...

7.3CVSS6.7AI score0.00017EPSS