It's not just Matt's Scripts that have trouble. The popular Web-logging tool Movable Type has a SPAM-vulnerable script called mt-send-entry.cgi. Not as popular yet, but it pays to stay ahead of the curve and lock this one down.