{"id":3672,"date":"2018-02-28T18:41:47","date_gmt":"2018-02-28T18:41:47","guid":{"rendered":"https:\/\/2018.london.wordcamp.org\/?post_type=wcb_session&#038;p=3672"},"modified":"2018-02-28T18:41:47","modified_gmt":"2018-02-28T18:41:47","slug":"securing-svg-uploads-in-wordpress","status":"publish","type":"wcb_session","link":"https:\/\/london.wordcamp.org\/2018\/session\/securing-svg-uploads-in-wordpress\/","title":{"rendered":"Securing SVG Uploads in WordPress"},"content":{"rendered":"<p>Designers and developers are increasingly using SVGs to replace standard image formats. That&#8217;s all well and good, but they may not be aware of the inherent security risks that come with allowing users to upload them themselves.<\/p>\n<p>In this talk I aim to explore some of the main issues that surround SVG uploads and why we&#8217;ve not seen this feature in WordPress yet. We&#8217;ll also look into why they need to be sanitised and the problems that can occur if we don&#8217;t properly secure them.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Designers and developers are increasingly using SVGs to replace standard image formats. That&#8217;s all well and good, but they may not be aware of the inherent security risks that come with allowing users to upload them themselves. In this talk I aim to explore some of the main issues that surround SVG uploads and why [&hellip;]<\/p>\n","protected":false},"author":13888542,"featured_media":0,"template":"","meta":{"_crdt_document":"","jetpack_post_was_ever_published":false,"_wcpt_session_time":1523699400,"_wcpt_session_duration":3000,"_wcpt_session_type":"session","_wcpt_session_slides":"","_wcpt_session_video":"","_wcpt_speaker_id":[3670],"footnotes":""},"session_track":[643127],"session_category":[185,144],"class_list":["post-3672","wcb_session","type-wcb_session","status-publish","hentry","wcb_track-track-c","wcb_session_category-design","wcb_session_category-development"],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9b3zx-Xe","session_date_time":{"date":"14th April 2018","time":"10:50 am"},"session_speakers":[{"id":"3670","slug":"daryll-doyle","name":"Daryll Doyle","link":"https:\/\/london.wordcamp.org\/2018\/speaker\/daryll-doyle\/"}],"session_cats_rendered":"Design, Development","_links":{"self":[{"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/sessions\/3672","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/sessions"}],"about":[{"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/types\/wcb_session"}],"version-history":[{"count":1,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/sessions\/3672\/revisions"}],"predecessor-version":[{"id":3673,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/sessions\/3672\/revisions\/3673"}],"speakers":[{"embeddable":true,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/speakers\/3670"}],"author":[{"embeddable":true,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wporg\/v1\/users\/enshrined"}],"wp:attachment":[{"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/media?parent=3672"}],"wp:term":[{"taxonomy":"wcb_track","embeddable":true,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/session_track?post=3672"},{"taxonomy":"wcb_session_category","embeddable":true,"href":"https:\/\/london.wordcamp.org\/2018\/wp-json\/wp\/v2\/session_category?post=3672"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}