CSRF攻击依赖于这样一个服务器假设：来自启动了验证会话的浏览器的所有请求都是有效的。

CSRF attacks depend on a server assuming that all requests transmitted from the browser that originally started an authenticated session are valid.

youdao

启动浏览器会话并打开一个指示板。

Launch a browser session and open up a dashboard.

youdao

如果浏览器会话丢失了，整个购物车也就消失了。

If the browser session is lost, the whole shopping cart also vanishes.

youdao