appears to be unlikely nevertheless... In the event the server had been compromised, it could then deliver javascript back to the browser to try and do a thing... Nevertheless they'd even now be within the browser's https://www.darkexploits.com/product/extremely-silent-jpg-exploit-new/