This is a page to demonstrate various instances of insecure browser extension
messaging that I’ve come across. Install one of the extensions and then click
the corresponding button on the page to trigger the exploit.
Note: If this page is public, then the exploits should be fixed in released
extension versions. Take care to install a vulnerable version of the extension
if you want to see the exploits in action.