The popular open-source text and code editor for Windows, Notepad++, has a new version out: 8.9.3 This article explores notepad new version. . The most important fix is that WinGUp, Notepad++'s auto-updater, now updates cURL to v8.19.0 to fix CVE-2025-14819.

The new version also updates Scintilla and Lexilla to 5.6.0 and 5.4.7, makes it easier to write themes for non-standard installations, fixes bugs that could overwrite files during autocomplete after updates, and stops XML configuration files from being overwritten when you update portable package installations. The new pugixml 1.15 engine is much lighter and faster, which makes Notepad ++ read and write its configuration files faster. Users who have made a lot of changes to their environments or have a lot of plugins installed will notice that their computers start up faster and that managing settings is more responsive.

This release also fixes all the regressions that were caused by the migration process. Because of the active threat landscape around Notepad+. We strongly recommend that all users and security experts update to v7.0.3 right away.

You can get the update right from the official Notepad+ downloads page. Because of Notepad++'s recent security problems, the patch is very sensitive. In late 2025, a China-based hacker known as Lotus Panda broke into the application's hosting infrastructure and took over the update channel from June to December 2025 to deliver a backdoor that had never been seen before.