One of the more favorite attacks with Cross Site-Scripting (XSS) is to hijack
another user's session. This attack is known as session hijacking (shocking!).
When it boils down to it, session hijacking is no different than you using a
public computer and forgetting to sign-out and another person