SoftwareTestPilot

Advanced – Security Testing

Cross-Site Request Forgery (CSRF) – ISTQB Definition

Last Updated: July 12, 2026 · SoftwareTestPilot QA Team

Official ISTQB Definition

An attack that tricks the victim into submitting a malicious request using their authenticated session with another site.

In simple words

Malicious page makes your browser send a real, authenticated request to another site.

Exam tip

Defence: CSRF tokens and SameSite cookies.

Related terms

Practice this term in the ISTQB Mock Test

40 CTFL v4.0 questions, 60-minute timer, instant scoring and chapter-wise breakdown.

Practice in Mock Test