Not to mention, the microblogging website has a standing offer of $15,000 for anyone who discovers a vulnerability that leaves it open to remote code executions. Twitter says it hasn't received any yet, but that's good news for the company. Besides talking about all the money that changed hands for the program, Twitter also revealed that only 20 percent of fixed bugs have been publicly disclosed. It says the company only discloses flaws "after they've been fixed, at the request of the researcher." If you're wondering what kind of vulnerabilities bounty hunters come across, Twitter lists some of the researchers' most notable finds in the same post.