Cross-Site Request Forgery
CSRF is a type of a malicious exploit or an attack vector that forces a user to transmit unauthorized commands that the web application trust. Malicious websites can transmit such commands through hidden forms or specially crafted image tags. Unlike Cross-Site Scripting (XSS) where the victim’s trust for a website is exploited, the website’s trust in CSRF for a victim’s browser is exploited.