The whole type of attack is called Cross Site Request Forgery (CSRF).
I am going to add some tutorials in the tutorial section.

tbs

Make sure you make this forum invulnerable before you post how to do it lol

and just about anybody could just host the file needed for an example. Hell we could problably host a "test" forum lol

There is no good way to protect against this type of stuff.
But it helps if there are secret information that has to be entered to do certain things.
- My account (you have to enter your password to change things)
- Logout (I also know a way to protect users from being logged out but it is so much work)
- ...

hmm, im thinking there might be a way that where all overlooking to make this entier thing much easyer... Well consider yourself lucky, you dont have to program with old computer cards