Notepad++: Gaps allow injection of malware and commands

Partially high-risk security vulnerabilities in the powerful text editor Notepad++ allow attackers to inject malware and commands.
CSOonline

Notepad++ vulnerabilities could enable arbitrary code execution on Windows systems

Two flaws in the widely used open-source editor can be triggered through manipulated configuration files, prompting security updates from the project's maintainers. Two arbitrary code execution ...