CVE-2021-39249 | Invision Community (IPS) before 4.6.5.1 allows reflected XSS
https://thejavasea.com/threads/cve-2021-39249-invision-community-ips-before-4-6-5-1-allows-reflected-xss.386/