Other than needing to untaint target filenames, I'm not aware of any vulnerabilities, nor did I come across any when I did a search a while back. Don't take that as proof, but then again, you're trying to prove a negative.