Notepad++ v8.8.1 Flaw Allows Complete System Control

A new vulnerability (CVE-2025-49144) in Notepad++ v8.8.1 or earlier versions allows attackers to exploit the installer via binary planting, gaining full SYSTEM-level access. A functional proof-of-concept has already been published, raising serious concerns, especially since the attack requires minimal user interaction. The post also discusses security issues related to third-party applications and suggests native alternatives that update automatically.