IMHO, I think they're being a bit sensationalist about it, from a quick glance making it sound as if it's the end of the world for RFID.
Then again, it's a pretty bad f*ck up on the part of the coders who wrote the RFID->SQL interface, blindly accepting data without checking it's validity.
..just never figured peanut butter could be so 733t