New CensEye API endpoint, Live Rescan for all Enterprise customers, enhancements to Platform AI tool configuration, recent searches in the Platform web UI, and more.
Platform
- Use the CensEye value counts API to obtain counts of web assets for specific field-value pairs and combinations of field-value pairs for rapid research and analysis.
- Added combined HTTP header key and value information to the default pivot fields for CensEye to quickly discover related infrastructure.
- All Enterprise customers now have access to the Live Rescan feature.
- Added the ability to configure AI tool usage and privacy settings at the individual user and organization level.
- Added recent searches to the search bar in the Platform web UI.
- Platform Starter users may now configure their Censys Credits to automatically replenish when they reach a specific amount.
Rapid Response
The Censys Rapid Response team published information about and queries for the following issue.
- Unauthenticated RCE in Wing FTP Server [CVE-2025-47812]
- Use the following queries to identify exposed Wing FTP servers. Not all of these are necessarily vulnerable.
New fingerprints
Added the following fingerprints.
| Type | Name | Description | Query |
|---|---|---|---|
| risk | Vulnerable Wing FTP Server CVE-2025-47812 | This Wing FTP Server is running a vulnerable version of the software that is susceptible to CVE-2025-47812, an unauthenticated remote code execution vulnerability. | ASM risk query: risks.name = "Vulnerable Wing FTP Server CVE-2025-47812" |
| software | Wing FTP Server | This service is running a Wing FTP server. | Platform query |
