corenominal

Full stack web developer, interested in all the things, but especially the web, code, design, Linux, OS X, PHP, WordPress, JavaScript & robots.

SVG uploads in WordPress (the Inconvenient Truth) image/svg+xml

WordPress is an excellent CMS “out of the box”, very easy to use and “just works” for the large majority of users. So why aren’t SVGs allowed in the first place? Why do we have to jump through hoops to make SVGs work?

Short answer: SVG files are extremely unsecure.

A good explanation of why WordPress doesn’t support SVGs. I’m a big fan of SVGs, but I can’t think that I’ve ever needed to upload any via the WordPress media uploader. I tend to use them for styling purposes, or as icons, but rarely (never say never) for content, so I’ve never considered this a problem.

That said, this post did make me wonder about how the Openclipart developers handle SVG security? I would imagine that they have to be even more cautious with their users as anyone can sign-up for an account and upload clipart in the form of SVGs. I’m not sure if the Openclipart site is open-source, I couldn’t find any details on the site, but it would be good to take a look.

Via CSS-Tricks

Leave a comment

Your email address will not be published. Required fields are marked *