TCPDF versions 4.5.036 through 4.9.005 suffer from a remote command execution vulnerability.
1b844893c3f0054edbc9dd60f588f560d22a1fdc58abcbfc9474ae08c0efc5f5
JDownloader versions below 2010-01-25 with Click n Load 2 support suffer from a code execution vulnerability. Proof of concept included.
ba7f6e4e08ee85e71bd5e6c100b3560e95cf7f00543ba82f05136b66ea2e6b8a