Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-48770 |
|
Out-of-Bounds Read in notepad-plus-plus (CVE-2026-48770)
vulnerability in notepad-plus-plus (CVE-2026-48770). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.9.6.1` or later.
|
| CVE-2026-48778 |
|
OS Command Injection in cpp (CVE-2026-48778)
OS command injection in cpp (CVE-2026-48778). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6.1` or later.
|
| CVE-2026-48800 |
|
OS Command Injection in cpp (CVE-2026-48800)
OS command injection in cpp (CVE-2026-48800). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6.1` or later.
|
| CVE-2026-52884 |
|
Vulnerability in cpp (CVE-2026-52884)
vulnerability in cpp (CVE-2026-52884). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6.2` or later.
|
| CVE-2026-52885 |
|
Vulnerability in cpp (CVE-2026-52885)
vulnerability in cpp (CVE-2026-52885). Data can be tampered with by attackers. Mitigation: upgrade to `8.9.6.4` or later.
|
| CVE-2026-46710 |
|
Vulnerability in privilege-escalation (CVE-2026-46710)
vulnerability in privilege-escalation (CVE-2026-46710). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6` or later.
|
| CVE-2026-5525 |
|
Vulnerability in notepad-plus-plus (CVE-2026-5525)
vulnerability in notepad-plus-plus (CVE-2026-5525). Confidential information can be exposed externally.
|
| CVE-2025-15556 KEV |
|
[KEV] Vulnerability in Notepad++ notepad (CVE-2025-15556)
vulnerability in Notepad++ notepad (CVE-2025-15556). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-31902 |
|
Notepad++ v8.4.1 was discovered to contain a stack overflow via the component Finder::add().
Notepad++ v8.4.1 was discovered to contain a stack overflow via the component Finder::add().
|
| CVE-2017-8803 |
|
Buffer Overflow in mh-nexus (CVE-2017-8803)
vulnerability in mh-nexus (CVE-2017-8803). Successful exploitation can lead to full system takeover.
|