WordPress flaw allows XSS attack via image filenames

SecurityWeek: http://www.securityweek.com/wordpress-flaw-allows-xss-attack-image-filenames

Vragen of feedback?