The Cross-Site Request Forgery is a relatively unknown and misunderstood attack, often mixed up with the Cross-Site Scripting (XSS) attack. The biggest difference is the server where the malicious code is hosted. With a XSS attack, that code is injected...