Cross-site request forgery, also known as a one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type of malicious exploit of a website whereby unauthorized commands are transmitted from a user that the website trusts. Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has in a user's browser.
Read more about Cross-site Request Forgery: History, Example and Characteristics, Limitations, Severity, Forging Login Requests, Other Approaches To CSRF, Prevention
Famous quotes containing the word request:
“Mr. Roosevelt, this is my principal request—it is almost the last request I shall ever make of anybody. Before you leave the presidential chair, recommend Congress to submit to the Legislatures a Constitutional Amendment which will enfranchise women, and thus take your place in history with Lincoln, the great emancipator. I beg of you not to close your term of office without doing this.”
—Susan B. Anthony (1820–1906)