Software > WordPress > WordPress Plugins >
WordPress SVG support >

https://wordpress.org/plugins/enable-svg-webp-ico-upload/
https://ideastocode.com/plugins/enable-svg-WebP-ico-upload/

Exactly as its titled; enables WordPress SVG support, .webp and .ico

• SVG Support has more advanced features, such as defence against XSS and Injection attacks.

• Subversion > https://plugins.svn.wordpress.org/enable-svg-webp-ico-upload/
• https://plugins.trac.wordpress.org/browser/enable-svg-webp-ico-upload/

• Development log

  • (subscribe by email)
  • RSS > (subscribe by RSS)

• GPL-2

-

• 2025-03-18 - 1.1.2 on WordPress 6.7.2 with PHP 8.2.27

  • Re-enabled since they reportedly fixed the security issues. Hey, they also added some security scanning too! I'll keep the SVG functionality disabled for now, since I'm using Safe SVG
• 2023-06-12 - Disabled for now due to security issues. Maybe I'll enable it as-needed.

• 2023-06-11 - 1.0.3 on WordPress 6.2.2 with PHP 8.1.18

WP Toolkit detects issues in 1.0.3 ∞

• Enable SVG, WebP & ICO Upload plugin <= 1.0.3 – Authenticated Arbitrary File Upload

• Enable SVG, WebP & ICO Upload plugin <= 1.0.3 – Authenticated Stored Cross-Site Scripting (XSS) vulnerability

reported

Alternatives ∞

• SVG Support

Last updated 2025-03-18 at 11:31:30