This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Session fixation

Revision as of 15:44, 28 November 2006 by Mwood (talk | contribs) (Related Vulnerabilities)

Jump to: navigation, search
This is an Attack. To view all attacks, please see the Attack Category page.

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.


This article should cover attacks where the attacker forces the victim to use a chosen session identifier.


Related Threats

Related Attacks

Related Vulnerabilities

Session Trapping

Related Countermeasures