Hello Mistwang,
This is really big security problem for all shared web hosting providers and I think its a missing feature for Apache web servers. If you could provide us an option to nevermind the .htaccess directives for enabling any cgi and put a disable cgi scripts from all web pages...