notepad-vulnerability

Here are 2 public repositories matching this topic...

SecureWithUmer / CVE-2026-20841

PoC for a remote code execution flaw in Windows Notepad's markdown renderer. The markdown engine does not restrict URL protocols, allowing arbitrary protocol handlers to be triggered via clickable links

exploit notepad cve windows-notepad command-injection 2026 cve-2026-20841 notepad-vulnerability notepad-exoploit securewithumer

Updated Feb 12, 2026

hamzamalik3461 / CVE-2026-20841

Star

🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.

microsoft agent mxnet exploit ethereum cv poc cve semantic-segmentation pose-estimation windows-notepad command-injection php-obfuscator sybil-resistance rag cve-2016-0856 cve-2026-20841 notepad-vulnerability

Updated Mar 4, 2026

Improve this page

Add a description, image, and links to the notepad-vulnerability topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the notepad-vulnerability topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly