Bill Kendrick web site guestbook (GBook) allows remote attackers to execute arbitrary commands via shell metacharacters in the _MAILTO form variable.
https://exchange.xforce.ibmcloud.com/vulnerabilities/5509
http://www.securityfocus.com/bid/1940
http://archives.neohapsis.com/archives/bugtraq/2000-11/0144.html