The attempt to level the CMD on the host, is done by functions (file_get_contents, passthru, system, shell_exec and fopen) always trying to save the directories (now, .. / .. / .. / .. / .. / .. /, img /, imgs /, images / and upload /) that sometimes does not have sufficient permission to save the file in certain directories, so he tries a few patterns, usually image directories have permission to write files.
Well, the program is quite simple enough to put the URL you want to explore, select options, settings arrow YOUR CMD (You must have a CMD as txt upada in some place on the web), and with just one click on the program will attempt to exploit and inject their CMD in the target host.
Download Latest version : LFI-tool-by-Gothie.zip (1.2 MB)
Find Other Version | http://sourceforge.net/projects/lfitool/files/
Read more in here :