diff --git a/csrf.php b/csrf.php
index 1cfd0e4..735ba7c 100644
--- a/csrf.php
+++ b/csrf.php
@@ -43,18 +43,18 @@ class csrf
     if (! isset ($_SESSION["domframework"]["csrf"]["csrf"]))
     {
       throw new Exception (dgettext("domframework", 
-                                    "No previous CSRF token : abort"));
+                                    "No previous CSRF token : abort"), 406);
     }
     if ($_SESSION["domframework"]["csrf"]["csrf"] !== $tokenFromUser)
     {
       throw new Exception (dgettext("domframework", 
-                                    "Invalid CSRF token provided"));
+                                    "Invalid CSRF token provided"), 406);
     }
     if (($_SESSION["domframework"]["csrf"]["csrfStart"] + $this->csrfTimeout) <
         microtime (TRUE))
     {
       throw new Exception (dgettext("domframework", 
-                                    "Obsolete CSRF token provided"));
+                                    "Obsolete CSRF token provided"), 406);
     }
     return TRUE;
   }