|This article contains too little information, it should be expanded or updated.|
|Things you can do to help:
Cross-Site Referral Forgery
CSRF can occur when a web form or action URL does not properly check its HTTP referrer information to ensure that a browser came from its own site. This can be especially dangerous to users of a site with a form like this. CSRF is likely one of the most prominent vulnerabilities today.
The result of a successful CSRF attack is performing actions in the context of a user's session. If a user is logged into one site, and clicks a link to another, the other site's code may control what the logged-in user does on the original site.
The following html may display a broken image:
This BBCode will be translated to normal HTML and handled like the example before.
|When mixed with XSS, this attack becomes the much more dangerous XSRF.|