} if ($_GET['action'] == "getFolderContents") { if (substr($_GET['dir'], 0, 2) != ".." && substr($_GET['dir'], 0, 1) != "/" && $_GET['dir'] != "./" && !stristr($_GET['dir'], '../')) { $dir = $_GET['dir']; $list = new FNFileList(); $list->getDirList($dir); exit; } else { // someone is poking around where they shouldn't be echo "Don't hack my shit yo."; exit; } } else { if ($_GET['action'] == "nextImage") { $out = new FNOutput(); $tmp = $out->nextAndPrev($_GET['pic']); if ($tmp[1] == "") { $nextpic = $tmp[2]; } else { $nextpic = $tmp[1]; } // get the image to preload $tmp2 = $out->nextAndPrev($nextpic); // get the image dimensions $imageDim = @getimagesize($nextpic); echo $nextpic . "|" . $imageDim[0] . "|" . $imageDim[1] . "|" . $tmp2[1]; exit; } } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"