{
  "entrypoint_kind": "api_remote",
  "entrypoint_detail": "Coolify authenticated POST /livewire/update driving destination.new.docker submit() (Destination Network Management network field)",
  "service_started": true,
  "healthcheck_passed": true,
  "target_path_reached": true,
  "runtime_stack": [
    "coolify (Laravel app, official image)",
    "postgres:15",
    "redis:7",
    "coolify-realtime (soketi)",
    "coolify-testing-host (SSH target, root)"
  ],
  "proof_artifacts": [
    "logs/reproduction_steps.log",
    "logs/stack_vulnerable.log",
    "logs/setup_vulnerable.log",
    "logs/vulnerable_attempt_1.log",
    "logs/vulnerable_attempt_2.log",
    "logs/vulnerable_marker_1.txt",
    "logs/vulnerable_marker_2.txt",
    "logs/stack_fixed.log",
    "logs/setup_fixed.log",
    "logs/fixed_attempt_1.log",
    "logs/fixed_attempt_2.log"
  ],
  "notes": "Vulnerable beta.470: authenticated network-field command injection executes `id` as root on the destination server (marker contains uid=0(root)). Fixed beta.471: regex validation 'The network field format is invalid.' blocks creation. Exploit client runs in coolify-testing-host container -> http://coolify:8080; command exec via SSH from coolify to coolify-testing-host."
}