Use Crumbs! Include a user-specific crumb in the request data.

]]> "XSRF Detected")); exit; } // Perform Action ?>]]>