Breaking LiteLLM: From Low-Privilege User to Admin and RCE