PerlSpeak up to and including 2.01 allows malicious users to execute arbitrary OS commands, as demonstrated by use of system and 2-argument open.
perlspeak project perlspeak