This page shows a demonstration of a Cross-Site Request Forgery (CSRF) attack that attempts to delete a user's account on Tomodachi Share.
This can be used for bad actors to trick users into performing unwanted actions on their accounts, such as deleting their account without their knowledge.
Example: A user is logged into Tomodachi Share in one browser tab, and visit a site with this CSRF attack in another tab. If they interact with that site (Like clicking a button, clicking the background, or even just loading the page), it could trigger the account deletion request without their consent.
For demonstration purposes, this form will send a POST request to the account deletion endpoint of Tomodachi Share's API. If the user is logged in and has a valid session and if you click the button, it will attempt to delete the account associated with that session.