diff --git a/modules/comment/comment.controller.php b/modules/comment/comment.controller.php
index b078fae33..45f649d57 100644
--- a/modules/comment/comment.controller.php
+++ b/modules/comment/comment.controller.php
@@ -185,6 +185,11 @@ class commentController extends comment
 	 */
 	function insertComment($obj, $manual_inserted = FALSE)
 	{
+		if(!$manual_inserted && !checkCSRF())
+		{
+			return new Object(-1, 'msg_invalid_request');
+		}
+
 		if(!is_object($obj))
 		{
 			$obj = new stdClass();