0-click GitLab hijacking flaw under active exploit, with thousands still unpatchedA maximum severity vulnerability in GitLab allows account hijacking without user interaction.