Common CSRF vulnerability in OAuth2 implementations

It takes 3-4 extra lines of code to implement CSRF protection for oauth2 login in python. The same kind of idiots who set themselves up for stupid sql injection attacks omit CSRF protection. How is this interesting?