Session hijacking

Also known as “session fixation” or “side-jacking", session hijacking occurs when an attacker usurps a valid user's session to access sensitive information or perform unauthorized actions.

By intercepting and acquiring a user's session ID, attackers can impersonate the user and gain unauthorized access.