Session Fixation vulnerabilities can make your users
liable to having their session hijacked.
A secure implementation of sessions on your site is key to protecting
Session hijacking allows hackers to bypass your authentication scheme
with impunity. This is almost the worst thing that could happen, security-wise –
and you may not know when it has occurred!