application-security

CSRF

Cross-Site Request Forgery

Definition

CSRF is an attack that tricks authenticated users into submitting unintended requests to a web application. The attacker crafts a malicious request that rides on the victim's active session, potentially changing account settings, making purchases, or modifying data.

Prevention typically involves anti-CSRF tokens and SameSite cookie attributes.

Related Terms

XSS

Cross-Site Scripting

CORS

Cross-Origin Resource Sharing

JWT

JSON Web Token

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product