Advanced – Security Testing
Cross-Site Request Forgery (CSRF) – ISTQB Definition
Last Updated: July 12, 2026 · SoftwareTestPilot QA Team
Official ISTQB Definition
An attack that tricks the victim into submitting a malicious request using their authenticated session with another site.
In simple words
Malicious page makes your browser send a real, authenticated request to another site.
Exam tip
Defence: CSRF tokens and SameSite cookies.
Related terms
Practice this term in the ISTQB Mock Test
40 CTFL v4.0 questions, 60-minute timer, instant scoring and chapter-wise breakdown.
Practice in Mock Test