November 24, 2025

Summary

• Added the ability to secure your Platform account with multi-factor authentication. Organization admins can enforce MFA for all members of their organization.
• Use weekly collection digest emails to track changes to your saved Platform queries over time.
• Two Rapid Response advisories for XWiki and FortiWeb issues.
• Added fingerprints for Frigate NVR and XWiki and an ASM risk fingerprint for XWiki instances vulnerable to CVE-2025-24893.

Platform

• You can now add another layer of security to your Platform account with multi-factor authentication (MFA) using an authenticator app.

  
  • Configure your personal MFA settings in Settings > Account Management > Personal Settings > Security.
  • Organization admins can configure MFA enforcement for their organization in Settings > Account Management > Organization Settings > Security.

• Use collection email notifications to receive weekly messages about updates to your collections. Emails are sent to the email address associated with your user account.

  

Rapid Response

The Censys Rapid Response team published information about and queries for the following issues.

• XWiki Platform Allows Unauthorized RCE Via RondoDox Botnet [CVE-2025-24893]
  • The queries below can help identify exposed XWiki instances, but they cannot determine whether systems are vulnerable.
    • Platform query
    • Legacy Search query
    • ASM query
• FortiWeb Vulnerability Allows Authenticated OS Command Injection [CVE-2025-58034]
  • The queries below can identify FortiWeb instances but do not filter by version.
    • Platform query
    • Legacy Search query
    • ASM query

New fingerprints

Added the following fingerprints.

risks.name: `Vulnerable XWiki [CVE-2025-24893]`