Drupal < 8.6.9 - REST Module Remote Code Execution