Topic: exploitation method involving malicious executables

Notepad++ Installer Flaw Exposes Systems to Attack (CVE-2025-49144)

A critical security flaw (CVE-2025-49144) in Notepad++ versions up to 8.8.1 could allow attackers to execute malicious code with SYSTEM-level permissions by exploiting the installer's vulnerable search paths. The vulnerability occurs when the installer runs alongside a malicious file in the same ...