Security Category

CSRF

Cross-site request forgery attack pattern.

Definition

CSRF is an attack where a logged-in browser is tricked into sending unintended requests; defenses include same-site cookies and anti-CSRF tokens.

Security reviews verify that state-changing form submissions require CSRF tokens and reject cross-origin requests that miss valid credentials.

Editorial review date: 2026-03-14

Learn CSRF and related Security terms by playing our vocabulary word search puzzle.