An application utilizes a browser token to maintain state, but it doesn't have any validation processes in place to ensure that the token is submitted by the original and valid obtained of the token. An attacker was able to hijack a browser token and gain unauthorized access to application. Which of the OWASP Top 10 vulnerabilities is this an example of?