CSRF
Cross-Site Request Forgery
Domain 2: Threats & Vulnerabilities
An attack that tricks a user's browser into executing unwanted actions on a website where they're authenticated. Exploits trust a site has in the user's browser.
Exam Tip
CSRF = attacker uses YOUR authenticated session. Prevented with anti-CSRF tokens.