The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability in the widely used Notepad++ text editor to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2025-15556, this flaw in the WinGUp updater component enables attackers to execute arbitrary code by intercepting update traffic without integrity checks. Developers, system administrators, and enterprises […] The post Notepad++ Code Execution Flaw Exploited in the Wild, CISA Issues Alert appeared first on Cyber Security News.