Cross-site request forgery (CSRF) is a web security liability. That permits an attacker to convince users to do actions that they do not offer to do. It lets an assailant to partially avoid the same origin policy that is planned to prevent diverse websites from interfering with each other.
