Researchers warn of a now-fixed critical remote code execution (RCE) vulnerability in GitLab's web interface actively exploited in the wild.