The following code is vulnerable to Session Cookie Injection as it assigns a session cookie using untrusted data.