CVE-2018-5955

An issue was discovered in GitStack through 2.3.10. User controlled input is not sufficiently filtered, allowing an unauthenticated attacker to add a user to the server via the username and password fields to the rest/user/ URI.

Date published : 2018-01-21

https://www.exploit-db.com/exploits/44356/

https://blogs.securiteam.com/index.php/archives/3557