Abstract: Cross-Site Request Forgery (CSRF) is an attack on the privacy of clients of a particular web site which can lead to a total breach of security when the person’s details are stolen or manipulated in any way. The CSRF attack involves three parties; the attacker, a client and the web site. The goal of this kind of attack is to steal the client cookies, or any other sensitive information, which can identify the client with the web site. With the token of the legitimate user at hand, the attacker can proceed to act as the user in his interaction with the site. Cross-Site Request Forgery attacks occur when a malicious web site causes a user’s web browser to perform an unwanted action on a trusted site. In this way, the attacker can impersonate the user. In this paper, the researcher investigated on the possibility of utilizing dynamic passwords to avert CSRF. The results obtained indicate that 94% of the respondents indicated that the dynamic passwords are 75% perfect in CSRF prevention.