A practitioner's breakdown of the CSRF attack: how the forged request works, two documented exploits, a manual test, and the ...
If you're considering PuppeteerSharp for PDF generation, here's the version of the story that doesn't show up in the "getting started" docs.