This kind of attack will let you assume a users identity at a dynamically generated web page or site: