Cornucopia - Ecommerce Website - AZ A
You have invented a new attack against Authorization.
Players can discuss any type of Authorization (AZ) attack they think might be possible against the assessment target. It does not matter if the attack relates to another AZ card, but if possible try to identify an attack that is fairly unique to the application/functionality/users.
Read more about this topic in OWASP’s Development and Testing Guides