What type of a vulnerability/attack is it when the malicious person forces the user's browser to send an authenticated request to a server?

A. Session hijacking
B. Server side request forgery
C. Cross-site request forgery
D. Cross-site scripting