There is an information disclosure vuln when you do the default install of Clientexec. This is cause by the file phpinfo.php. In this php file it calls the functin phpinfo(); this wouldn't be bad if it was restricted with a .htaccess or if it was mentioned in the documentation.
