WordPress Fixes CSRF, XSS Bugs, Announces Bug Bounty Program Posted on May 19, 2017 by Simon Steed WordPress fixed six vulnerabilities with version 4.7.5 and announced a bug bounty program with HackerOne this week.