While SVG primarily enables the crafting of images using text, lines, and shapes in code rather than pixels, such files could also be utilized to show HTML and facilitate JavaScript execution in credential-stealing phishing forms.
Article Link: Exploitation of SVG attachments in phishing on the rise | SC Media