Machine Learning for Web Vulnerability Detection: The Case of Cross-Site Request Forgery