During testing of the Master Slider WordPress plugin through 3.9.10, a CSRF vulnerability was found, which allows an unauthorized user to manipulate requests on behalf of the victim and thereby delete all of the sliders inside Master Slider WordPress plugin through 3.9.10.
https://wpscan.com/vulnerability/5a56e5aa-841d-4be5-84da-4c3b7602f053/