Careful out there.

The vulnerability comes from the way Notepad handles Markdown hyperlinks. Attackers craft malicious .md files with embedded ...

The flaw exploits Notepad’s recently added support for Markdown, a formatting language used on websites and in files, to run malicious code on a Windows PC.

Microsoft has fixed a "remote code execution" vulnerability in Windows 11 Notepad that allowed attackers to execute local or ...

You can infect your PC with malware without ever leaving Notepad, thanks to recent updates and additions. Hooray.

There's a remote code execution vulnerability in Notepad which is leveraged via the recently introduced formatting abilities to make tables in the app.

Microsoft has patched a high-severity RCE vulnerability in the Windows 11 Notepad app that could allow attackers to silently execute malicious files ...

Microsoft has fixed a serious security vulnerability affecting Markdown files in Notepad. In the company’s Tuesday patch ...

According to Microsoft's release notes, the update fixes 25 elevation of privilege flaws, 12 remote code execution ...

Microsoft confirms CVE-2026-20841, a Remote Code Execution flaw in Windows 11 Notepad via Markdown links. Patch now rolling out.

High-severity flaw fixed in Windows 11 Notepad ...

I deeply apologize to all users affected by this hijacking,” the author of a post published to the official notepad-plus-plus.org site wrote Monday. The post said that the attack began last June with ...