CVE-2015-2607
CVE-2015-2607 affects Oracle Commerce Guided Search / Oracle Commerce Experience Manager within Oracle Commerce Platform (versions 3.0.2, 3.1.1, 3.1.2, 11.0, 11.1). The vulnerability is an authentication bypass in Oracle Endeca Tools and Frameworks session generation: if an auth parameter is prov...