CSRF is a vulnerability allowing attackers to persuade users who are already logged in to unconsciously perform an undesirable action on a website. This takes place using a fake request to the victim’s browser which is then interpreted as a legitimate request by the user, potentially resulting in actions like fund transfers, password changes or data leaks. Such attacks abuse the website’s trust in users’ browsers, automatically transmitting its authentification data (often cookies) at the same time.