Code Execution news

Two security vulnerabilities have been discovered in Luanti. The first (CVE-2026-40959) could allow an attacker to execute arbitrary code by bypassing sandbox restrictions. The second flaw could grant unintended access to insecure environments or the HTTP API, posing significant security risks to affected systems.

Two high-severity vulnerabilities (CVSS 7.8) have been found in the popular Notepad++ code editor. The flaws, affecting versions up to 8.9.6, allow local attackers to execute arbitrary code on Windows systems by manipulating XML configuration files. Users are urged to update to the latest version.