Cross-site request forgery involves:

Cross-site request forgery involves:

• A browser making a request to a server without the user's knowledge
• A server making a request to another server without the user's knowledge
• A request sent by a malicious user from a browser to a server
• Modification of a request by a proxy between client and server