Our server firewall detected a lot of Wordpress hacking attack, when we checking the log , they are using admin-ajax.php as the backdoor to upload the exploit on the server. We found this was not the new exploit running on the net, We need our Customer to cooperate with us to update their Wordpress CMS and update their plugin as soon as possible even though our firewall can detect and block the attack for now.