Yet another cross-web-site vulnerability is cross-web-site request forgery (CSRF). In CSRF, code on an attacker's web-site tips the victim's browser into having actions the user didn't intend in a focus on site (like transferring income in a lender). When goal internet sites depend entirely on cookies for request authentication, requests originatin