Add2it Mailman command execution

!/exploit/by/b0iler Add2it Mailman Free V1.73 script url: http://www.add2it.com/scripts/mailman-free.shtml The problem is that the script does not filter input well: $command = $ENV'QUERYSTRING'; $list, $email = split/=/,$command; and then the script makes an open call based on input from the use...