 
  
                                          
            Session hijacking is mimicking a different person by using that person’s session id. That is, if person A gets the session cookie information of person B and A stores that cookie in his web browser manually (similar to how B has stored the cookie in his browser). Then A can get the same access as that of B if that session file is present in the server. This is called session hijacking.
      
              
              
            
            
           
    