A chaining of three vulnerabilities in LiteLLM enables proxy server takeover and access to all managed API keys from over 100 AI model providers.