CSRF = Cross Site Request Forgery
A good start to prevention is not using Java, JavaScript and Ajax on the website.
Some other suggested measurements : https://en.wikipedia.org/wiki/Cross-site_request_forgery#Prevention
