WordPress Stored Cross-Site Scripting (XSS) Vulnerability

A vulnerability was reported in WordPress and a remote user can conduct cross-site scripting attacks. The system does not properly filter HTML code from user-supplied input in Comments before displaying the input. A remote user can submit a specially crafted and long comment that, when viewed by a target user, will cause arbitrary scripting code to be executed by the target user's browser.