more on the AntiForgeryToken

The @Html.AntiForgeryToken Razor snippet should probably go inside of each form in Razor markup. It prevents cross-site request forgery (CSRF or XSRF) wherein sinister links or redirects or reroutings of some manner are injected into legitimate views or content. Put [ValidateAntiForgeryToken] as an attibute at your MVC action to make it count!