[MEDIUM] User Plugin for October CSS Allows XSS

PKSA-x1rw-61mw-8brd CVE-2018-10366 GHSA-x5jc-34xf-c24q

Affected package: rainlab/user-plugin

Affected version: <=1.4.5

Reported by:
GitHub