Cross-Site Request Forgery
https://owasp.org/www-community/attacks/csrf
Mitigating CSRF attacks in Single Page Applications - https://medium.com/tresorit-engineering/modern-csrf-mitigation-in-single-page-applications-695bcb538eec
https://developer.mozilla.org/en-US/docs/Glossary/CSRF
XSS always overrides CSRF - if you're vulnerable to the former then any CSRF protection is undermined. source