Arbitrary Loader Deletion via Cross-Site Request Forgery (CSRF) vulnerability discovered by apple502j in WordPress MAZ Loader plugin (versions <= 1.4.0).
Update the WordPress MAZ Loader plugin to the latest available version (at least 1.4.1).