CVE-2022-1680: Gitlab account take over vulnerability