Too Long; Didn't Read
Cross-Site Request Forgery/ CSRF/ XSRF is a type of attack that exploits a trusted user's privileges on a web application by sending unauthorised commands that alter the server's state without the user's knowledge. CSRF has the dubious honour of being one of OWASP's top 10 Security Risks in the last decade. An attacker can do anything from sending an e-card to buying shares in a company to hacking into wind turbines. Only you as an application developer can fully protect your users.