Since SVG files can have JavaScript, which would get executed is it a potential threat for malware, tracking scripts and similar stuff?
Asked
Active
Viewed 99 times
0
-
If I'm correct it depends on how you "import" SVG. If you were to add the SVG source code with the whole JS Code in CDATA it would probably be a danger, but by doing you would highly likely notice something is off. Please correct me if I'm wrong – Sir Muffington Nov 12 '21 at 16:26