Question:

Which of the following attacks might you employ to achieve in the case:
Sessions are used by web applications to create a connection and transport sensitive data between a client and a server. Attacking an application's session management methods can assist you in overcoming some authentication controls and gaining access to the permissions of more privileged application users.