CVE-2026-52884

Name of the Vulnerable Software and Affected Versions Notepad++ (affected versions not specified)

Description A zero-click remote code execution (RCE) issue exists due to path traversal. Path traversal is a technique that allows an attacker to access files and directories that are stored outside the web root folder by manipulating variables that reference files with dot-dot-slash (../) sequences.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.