Notepad-plus-plus Notepad\+\+
3 CVEs affecting Notepad-plus-plus Notepad\+\+. Latest disclosed: 2026-04-30. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-8803 | High | 7.8 | 2017-07-05 | Notepad++ 7.3.3 (32-bit) with Hex Editor Plugin v0.9.5 might allow user-assisted attackers to execute code via a crafted file, because of a "Data from Faulting… |
CVE-2026-5525 | Medium | 6.0 | 2026-04-10 | A stack-based buffer overflow vulnerability exists in Notepad++ version 8.9.3 in the file drop handler component. When a user drags and drops a directory path… |
CVE-2026-6539 | Medium | 4.4 | 2026-04-30 | Notepad++ 8.9.3 contains a format string injection vulnerability in the Find Results panel handler that allows attackers to cause denial of service and informa… |