Cross-Site Request Forgery (CSRF)

This is a type of attack on a web application that does not properly check that requests are legitimate. An attacker can secretly execute actions in the name of a user by making the user visit a specially crafted page.

Back to the glossary overview