Changes between Version 1 and Version 2 of Ticket #24251, comment 57
- Timestamp:
- 02/27/2016 09:19:15 PM (8 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #24251, comment 57
v1 v2 12 12 > IT took virtually no time at all to build the PoC WP plugin to allow uploads of SVG. Then WP released an update and the plugin had to be modified. 13 13 14 The plugin didn't fully sanitize SVGs at the time it was uploaded. Whether the plugin runs now or not as the result of a WordPress update is irrelevant.Moreover, the new SVG 2.0 also adds more places for JS to be placed in an SVG file that the plugin doesn't account for.14 The plugin didn't fully sanitize SVGs at the time it was uploaded. Moreover, the new SVG 2.0 also adds more places for JS to be placed in an SVG file that the plugin doesn't account for.