Cross-Site Request Forgery (CSRF)
An attack that forces victims to execute unintended actions in a web application where they are already logged in. An attacker can use social engineering (e.g. by sending a link via email or chat) to make the user of a web application perform actions unwittingly according to the attacker's plan.