Part 2: How the Red Agent bypassed backend resolvers to expose an entire airline booking database in fifteen minutes