Weaponizing LLM prompt injection to hijack user deletion logic — an offensive deep dive into excessive agency abuse.