It is a method of attacking website from malicious or fake site send request to valid or valunerable website where the user is logged In, we should know that all web application plateform is valunerable from CSRF that is cross site request forgery attack it is also known as XSRF. We can prevent it from the Anti-Forgery Token.