[Mailman-Users] Issue that Can cause mass spam for site admin

[Robert Campbell]

While testing my local install, one of my colleges found an exploit with the
"forgot password" and "unsubscribe" option of the web UI and ended up
spamming me ( on purpose to prove the pt), 90 emails to the list-owner in
under 5 min as a different user ( mainly my test user), so this could be
easily scripted.

Has anyone else seen this issue, if so any suggestions on how to fix it?