MathML includes the ability to include hyperlinks within your mathematics, and such links could be made to javascript: URL’s. [...] Similarly, MathJax provides an HTML extension for the TeX language that allows you to include hyperlinks in your TeX formulas. [...] Both MathML and the HTML extension for TeX allow you to add CSS styles, classes, and id’s to your math elements as well. These features can be used to produce interactive mathematical expressions to help your exposition, improve student learning, and so on.
If you are using MathJax in a community setting, however, like a question-and-answer forum, a wiki, a blog with user comments, or other situations where your readers can enter mathematics, then your readers would be able to use such powerful tools to corrupt the page, or fool other readers into giving away sensitive information, or interrupt their reading experience in other ways. In such environments, you may want to limit these abilities so that your readers are protected form these kinds of malicious actions.
MathJax provides a Safe extension to help you limit your contributors’ powers.
So, it does appear that it can be locked down so it can only be used as a rendering engine and not a tool to "corrupt" the experience of people reading the page.
no subject
MathML includes the ability to include hyperlinks within your mathematics, and such links could be made to javascript: URL’s. [...] Similarly, MathJax provides an HTML extension for the TeX language that allows you to include hyperlinks in your TeX formulas. [...] Both MathML and the HTML extension for TeX allow you to add CSS styles, classes, and id’s to your math elements as well. These features can be used to produce interactive mathematical expressions to help your exposition, improve student learning, and so on.
If you are using MathJax in a community setting, however, like a question-and-answer forum, a wiki, a blog with user comments, or other situations where your readers can enter mathematics, then your readers would be able to use such powerful tools to corrupt the page, or fool other readers into giving away sensitive information, or interrupt their reading experience in other ways. In such environments, you may want to limit these abilities so that your readers are protected form these kinds of malicious actions.
MathJax provides a Safe extension to help you limit your contributors’ powers.
http://docs.mathjax.org/en/latest/safe-mode.html
http://docs.mathjax.org/en/latest/options/Safe.html
So, it does appear that it can be locked down so it can only be used as a rendering engine and not a tool to "corrupt" the experience of people reading the page.