CVE-2025-15556 PoC — Notepad++ 安全漏洞

Source

https://github.com/renat0z3r0/notepadpp-supply-chain-iocs

Associated Vulnerability

Title:Notepad++ 安全漏洞 (CVE-2025-15556)
Description:Notepad++是中国台湾侯今吾（Don Ho）个人开发者的一款开源的纯文本编辑器。 Notepad++ 8.8.9之前版本存在安全漏洞，该漏洞源于使用WinGUp更新器时更新完整性验证不足，可能导致执行任意代码。

Description

IoCs and detection rules for the Notepad++ supply chain attack (CVE-2025-15556) — Lotus Blossom APT, June–December 2025. Includes Falcon LogScale queries, YARA/Sigma rules, and MITRE ATT&CK mapping.

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!