}
if ($_GET['action'] == "getFolderContents") {
if (substr($_GET['dir'], 0, 2) != ".." && substr($_GET['dir'], 0, 1) != "/" && $_GET['dir'] != "./" && !stristr($_GET['dir'], '../')) {
$dir = $_GET['dir'];
$list = new FNFileList();
$list->getDirList($dir);
exit;
} else {
// someone is poking around where they shouldn't be
echo "Don't hack my shit yo.";
exit;
}
} else {
if ($_GET['action'] == "nextImage") {
$out = new FNOutput();
$tmp = $out->nextAndPrev($_GET['pic']);
if ($tmp[1] == "") {
$nextpic = $tmp[2];
} else {
$nextpic = $tmp[1];
}
// get the image to preload
$tmp2 = $out->nextAndPrev($nextpic);
// get the image dimensions
$imageDim = @getimagesize($nextpic);
echo $nextpic . "|" . $imageDim[0] . "|" . $imageDim[1] . "|" . $tmp2[1];
exit;
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
