{
  "repository": "https://github.com/horde/Vfs",
  "commit_source": "git_rev_parse",
  "commit_sha": "41f74b4acfc144e09013d04dd121e0a5da808361",
  "submitted_target": {
    "target_kind": "commit",
    "commit_sha": "994f4a46fd76ea44eae2fe839216bb273ce49080",
    "version": "3.0.0",
    "display": "Horde VFS v3.0.0 (commit 994f4a46)"
  },
  "variant_target": {
    "target_kind": "commit",
    "commit_sha": "41f74b4acfc144e09013d04dd121e0a5da808361",
    "version": "3.0.1",
    "display": "Horde VFS v3.0.1 (commit 41f74b4)"
  },
  "notes": "The vulnerable commit was the parent of the fixed commit (41f74b4^). The fixed commit is the current repository HEAD and the version released as v3.0.1. No distinct bypass was found on the fixed commit."
}
