A vulnerability, which was classified as problematic , has been found in notepad-plus-plus Notepad++ up to 8.9.5 . Affected is an unknown function of the component Powershell Handler . The manipulation leads to untrusted search path. This vulnerability is uniquely identified as CVE-2026-46710 . Local access is required to approach this attack. No exploit exists. It is advisable to upgrade the affected component.