Notepad ++

Notepad++ exploit

CVE-2025-56383

DLL Injection

GitHub - zer0t0/CVE-2025-56383-Proof-of-Concept: CVE-2025-56383-Proof-of-ConceptGitHub

DLL Hijacking

CVE-2025-49144

Privilege Escalation

GitHub - TheTorjanCaptain/CVE-2025-49144_PoC: CVE-2025-49144 PoC for security researchers to test and try.GitHub

The vulnerability affects the Notepad++ v8.8.1 installer released on May 5, 2025, exploiting an uncontrolled executable search path that enables local privilege escalation attacks.

Attackers can place a malicious executable, such as a compromised regsvr32.exe, in the same directory as the Notepad++ installer, by default Download folder.

Interesting Books

Disclaimer: As an Amazon Associate, I earn from qualifying purchases. This helps support this GitBook project at no extra cost to you.

The Web Application Hacker’s Handbook The go-to manual for web app pentesters. Covers XSS, SQLi, logic flaws, and more
Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities Learn how to perform reconnaissance on a target, how to identify vulnerabilities, and how to exploit them
Real-World Bug Hunting: A Field Guide to Web Hacking Learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery.

Support this Gitbook

I hope it helps you as much as it has helped me. If you can support me in any way, I would deeply appreciate it.

PreviousNostromo NextNVMS 1000

Last updated 3 months ago

hashtagCVE-2025-56383

hashtagCVE-2025-49144

hashtagInteresting Books

hashtagSupport this Gitbook

CVE-2025-56383

CVE-2025-49144

Interesting Books

Support this Gitbook