In my latest youtube video, I show you how to perform a CSRF attack ( Cross Site Request Forgery).
This type of attack allows an attacker to hijack a browser section to push a user to do something without knowing like changing his or her password.
This type of attack can be mitigated with proper website coding using tokens that would not allow the same request to be sent twice with the same token.
You can get more information about this attack on the OWASP site.
Click this Link to the OWASP document