This is the OWASP TimeGap Theory handbook that discusses TOC/TOU vulnerabilities.
3fa653fadddee02d336d318a62bba714ded87e3ad0707724dc715175cf443fc2
chillyCMS version 1.3.0 suffers from URL restriction bypass and remote shell upload vulnerabilities.
799091adcdc8f5d9b6d25e83467094ead111bbd36d846c5dead793c131fb9a8e
OneFileCMS versions up to 1.1.4 suffers from a direct access bypass vulnerability.
2c05d07d60476a4de6a5fc22c6af9da20f55d52633c789d4713aa7c686b4082c