Gaia SID?

[323]

Lol. It's exactly what the name implies - a session id. Look up PHP sessions if you're confused (though I'm sure they extend it with a database session as well).

So could one use XSS to steal this session, and like fluttershy said, session hijack?

Hurray. Thanks, now i know how to session hijack.

XD I know right? Now to find out how to grab the session cookie...