notepad-plus-plus / notepad-plus-plus Public

• Notifications You must be signed in to change notification settings
• Fork 5.2k

• Star 27.5k

No security policy detected

This project has not set up a SECURITY.md file yet.

• Untrusted Search Path in Notepad++

  GHSA-rjvm-fcxw-2jxq published Feb 16, 2026 by donho

  High

• Privilege Escalation in Notepad++ v8.8.1 Installer via Uncontrolled Executable Search Path

  GHSA-9vx8-v79m-6m24 published Jun 21, 2025 by donho

  High

• Remote Code Execution notepad++ using Uncontrolled Search Path Vulnerability

  GHSA-g5rj-m8mm-cgw6 published Jun 20, 2025 by donho

  High

• Heap buffer read overflow in FileManager::detectLanguageFromTextBegining

  GHSA-v2h9-jfmf-5cgq published Sep 8, 2023 by donho

  Low

• Heap buffer write overflow in Utf8_16_Read::convert

  GHSA-cfcv-789h-3pg3 published Sep 8, 2023 by donho

  High

• Global buffer read overflow in nsCodingStateMachine::NextState

  GHSA-67mm-g35x-jv47 published Sep 8, 2023 by donho

  Moderate

• Global buffer read overflow in CharDistributionAnalysis::HandleOneChar

  GHSA-jg7c-f532-25h8 published Sep 6, 2023 by donho

  Moderate

Learn more about advisories related to notepad-plus-plus/notepad-plus-plus in the GitHub Advisory Database