{"vulnerability": "cve-2026-48778", "sightings": [{"uuid": "273dea79-48ba-438e-af53-0eddb7969158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://www.acn.gov.it/portale/w/notepad-poc-pubblici-per-le-cve-2026-48800-cve-2026-48778-e-cve-2026-48770", "content": "Disponibili Proof of Concept (PoC) per le CVE-2026-48800, CVE-2026-48778 e CVE-2026-48770 \u2013 gi\u00e0 sanata dal vendor \u2013 presenti nel software \u201cNotepad++\u201d, noto editor di testo avanzato per Windows. Tali vulnerabilit\u00e0, qualora sfruttate, potrebbero consentire ad un utente malintenzionato con accesso locale di eseguire codice arbitrario e compromettere la disponibilit\u00e0 del servizio sui sistemi target.", "creation_timestamp": "2026-05-28T12:51:30.000000Z"}, {"uuid": "d1f9a665-dd63-429f-b1de-c6188464d23c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/crustytldr.bsky.social/post/3mmzk5ms7vf2l", "content": "\ud83d\udd12 Two RCE vulnerabilities in Notepad++ (CVE-2026-48778, CVE-2026-48800)\n\nTwo high-severity RCE vulnerabilities (CVE-2026-48778, CVE-2026-48800) have been discovered in Notepad++ v8....\n\nhttps://tinyurl.com/mvjtt973 #CyberSecurity #InfoSec #CrustyTLDR", "creation_timestamp": "2026-05-29T22:04:26.702426Z"}, {"uuid": "b85644e7-ac35-42c9-af85-1a416bb73429", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3mn32y62gra2x", "content": "Notepad++ vulnerabilities could enable arbitrary code execution on Windows systems (CVE-2026-48778 and CVE-2026-48800) #patchmanagement", "creation_timestamp": "2026-05-30T12:38:16.819918Z"}, {"uuid": "97779784-873f-41db-af99-e034cb2924a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://t.me/GithubRedTeam/86539", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-48778-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a kavin-jindal\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-30 12:16:42\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-30T13:00:04.000000Z"}, {"uuid": "6e353b71-8f56-46e0-bab5-5466479b08fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://t.me/GithubRedTeam/86575", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #RCE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-48778\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a XK3NF4\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a C++\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-30 17:52:14\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nNotepad++ RCE via config.xml commandLineInterpreter\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-30T18:00:04.000000Z"}, {"uuid": "bdcb7935-1441-4b39-a3ea-1a40105ac933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/notepad-plus-plus.org/post/3mn5rlokl3c2g", "content": "Notepad++ new release v8.9.6.2 fixes a bypass scenario in the previously addressed vulnerability (CVE-2026-48778) that was not fully resolved:\nnotepad-plus-plus.org/news/v8962-r...", "creation_timestamp": "2026-05-31T14:28:14.892505Z"}, {"uuid": "5fc9175d-c26e-4db4-a0d6-55024bbe76df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mn6zyh5flz2u", "content": "Top 3 CVE for last 7 days:\nCVE-2026-0257: 28 interactions\nCVE-2026-48778: 21 interactions\nCVE-2026-48095: 19 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-48778: 20 interactions\nCVE-2026-0257: 11 interactions\nCVE-2026-8732: 3 interactions\n", "creation_timestamp": "2026-06-01T02:31:11.811835Z"}, {"uuid": "311ecd17-2735-4ed3-8799-9a4b454dfbaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mnbkhiii6g2s", "content": "Top 3 CVE for last 7 days:\nCVE-2026-0257: 34 interactions\nCVE-2026-48778: 22 interactions\nCVE-2026-48095: 20 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-41089: 12 interactions\nCVE-2026-8732: 9 interactions\nCVE-2026-44962: 8 interactions\n", "creation_timestamp": "2026-06-02T02:31:15.891369Z"}, {"uuid": "282d6a21-1fcf-4d19-bcc9-a0ab2b295648", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "Telegram/l1vE9HUrzRN3YgnBjoD0X2bVt12uBAEnmzNbhS5dacgQt4U", "content": "", "creation_timestamp": "2026-05-30T21:00:04.000000Z"}, {"uuid": "1fbd9b0c-d82f-4343-8846-3a94ecacacc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "Telegram/11w8RI0cRJ2Y_5Y75akm2L08lgCZSwunoJ6IZ7hlmRoONww", "content": "", "creation_timestamp": "2026-05-30T19:00:10.000000Z"}, {"uuid": "3a37fb93-8a6e-4727-ad95-3829b4204e82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mne2wpe5722x", "content": "Top 3 CVE for last 7 days:\nCVE-2025-48595: 127 interactions\nCVE-2026-0257: 42 interactions\nCVE-2026-48778: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2025-48595: 127 interactions\nCVE-2026-46243: 12 interactions\nCVE-2026-0257: 8 interactions\n", "creation_timestamp": "2026-06-03T02:31:25.801854Z"}, {"uuid": "4c36d29e-6ac1-4bd6-982b-50bb36abab37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mnglfbhxsc2c", "content": "Top 3 CVE for last 7 days:\nCVE-2025-48595: 134 interactions\nCVE-2026-0257: 42 interactions\nCVE-2026-48778: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2025-48595: 7 interactions\nCVE-2026-42897: 7 interactions\nCVE-2026-42945: 5 interactions\n", "creation_timestamp": "2026-06-04T02:31:13.915984Z"}, {"uuid": "60aadf67-5591-4d65-9a50-abf5185c109b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mnj3tf3oaw2f", "content": "Top 3 CVE for last 7 days:\nCVE-2025-48595: 136 interactions\nCVE-2026-0257: 43 interactions\nCVE-2026-48778: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-49858: 11 interactions\nCVE-2026-20230: 6 interactions\nCVE-2026-10737: 4 interactions\n", "creation_timestamp": "2026-06-05T02:30:47.115463Z"}, {"uuid": "d51fe5e1-36f6-452c-85bb-4c4985997745", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116696141985383127", "content": "Attention, elevated activities detected targeting Notepad++ (CVE-2026-48778) https://vuldb.com/vuln/367178/cti", "creation_timestamp": "2026-06-05T06:43:36.817858Z"}, {"uuid": "adf64a8c-9b4e-4e17-a63d-6579b13e75de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3moxesahlrk2n", "content": "Notepad++\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u306b\u3088\u308a\u3001\u30ea\u30e2\u30fc\u30c8\u30b3\u30fc\u30c9\u5b9f\u884c\u653b\u6483\u304c\u53ef\u80fd\u306b\u306a\u308b\u6050\u308c\u304c\u3042\u308b\n\nNotepad++\u306f\u3001\u7279\u5b9a\u306e\u6761\u4ef6\u4e0b\u3067\u4efb\u610f\u306e\u30b3\u30fc\u30c9\u5b9f\u884c\u3092\u53ef\u80fd\u306b\u3059\u308b\u91cd\u5927\u306a\u6b20\u9665\u3092\u542b\u3080\u3001\u8907\u6570\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u8106\u5f31\u6027\u306b\u5bfe\u51e6\u3059\u308b\u305f\u3081\u3001\u30d0\u30fc\u30b8\u30e7\u30f38.9.6.1\u3092\u30ea\u30ea\u30fc\u30b9\u3057\u307e\u3057\u305f\u3002\n\n2026\u5e745\u670826\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u3053\u306e\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3067\u306f\u3001CVE-2026-48770\u3001CVE-2026-48778\u3001\u304a\u3088\u3073CVE-2026-48800\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b3\u3064\u306e\u8106\u5f31\u6027\u304c\u4fee\u6b63\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u554f\u984c\u306f\u30d0\u30fc\u30b8\u30e7\u30f38.9.6\u307e\u3067\u306b\u5f71\u97ff\u3057\u3001\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u306e\u4e0d\u9069\u5207\u306a\u53d6\u308a\u6271\u3044\u306b\u95a2\u9023\u3059\u308b\u30ea\u30b9\u30af\u3092\u6d6e\u304d\u5f6b\u308a\u306b\u3057\u3066\u3044\u307e\u3059\u3002", "creation_timestamp": "2026-06-23T12:13:41.840730Z"}, {"uuid": "0a376628-2cc8-43a4-b6b1-571bebdae342", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp7yf2fsvo2l", "content": "CVE-2026-48778 - Notepad++: Arbitrary Code Execution via config.xml commandLineInterpreter\nCVE ID : CVE-2026-48778\n \n Published : June 26, 2026, 8:21 p.m. | 1\u00a0hour, 23\u00a0minutes ago\n \n Description : Notepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the \n ...", "creation_timestamp": "2026-06-26T22:25:29.820992Z"}, {"uuid": "267c50da-12b7-4f0c-8093-f5983d6c6f43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mpbxfpwbnc22", "content": "CVE-2026-48778 - Supply chain attack in Notepad++ pre-8.9.6.1. Unsanitized config.xml input leads to arbitrary command execution via File &gt; Open Containing Folder &gt; cmd. CVSS 7.8. No patch available. Disable feature or isolate. #CVE #Notepa...\n\nhttps://www.valtersit.com/cve/CVE-2026-48778/", "creation_timestamp": "2026-06-27T17:13:18.095696Z"}, {"uuid": "4d39548c-0440-4080-921b-7686192eee52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpdt2zdadd2y", "content": "\ud83d\udfe0 CVE-2026-48778 - High (7.8)\n\nNotepad++ is a free and open-source source code editor. Prior to 8.9.6.1, the  tag in config.xml ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48778/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-28T11:01:04.250422Z"}, {"uuid": "4d28b3ef-cd08-45e1-876a-7df7a41dacc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48778", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpgqb7reuw2r", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48778 \u0432 Notepad++: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/A8B51544-9497-4123-8AC9-8462B06A9F6A", "creation_timestamp": "2026-06-29T14:48:49.347773Z"}]}