Cross-site request forgeries... Exploit the trust a site has for a particular user. Generally involve Web sites that rely on the identity of the users. Perform HTTP requests of the attacker's choosing.