getRequest()->getParam();
$site = (int) $param['site'];
$basedir = _DATAPATHX_.DIRECTORY_SEPARATOR.'media';
if (is_dir($basedir) && !is_dir($basedir.DIRECTORY_SEPARATOR.$site))
mkdir($basedir.DIRECTORY_SEPARATOR.$site,770);
$basedir .= DIRECTORY_SEPARATOR.$site;
$dir = str_replace('//','/',isset($_GET['dir']) ? $_GET['dir'] : '');
// input filter
while (strpos($dir,'../..'))
$dir = str_replace('../..','..',$dir);
if (preg_match('#[\\/]*\.\.#',$dir))
$dir = '';
?>
Medien
:
';
$st .= '';
$st .= '| | ';
$st .= 'Name | ';
$st .= 'Size | ';
$st .= ' | ';
$st .= '
';
$files = scandir($basedir.$dir);
foreach ($files as $nr=>$file) {
$fullpath = $basedir.$dir.__DS__.$file;
if ($file != '.') {
if ($file == '..') {
$dirParts = explode('/',$dir);
unset($dirParts[count($dirParts)-1]);
$st .= '';
$st .= '| | ';
$st .= ''.$file.' | ';
$st .= ' | ';
$st .= ' | ';
$st .= '
';
unset($files[$nr]);
}
elseif (is_dir($fullpath)) {
$st .= '';
$st .= '| | ';
$st .= ''.$file.' | ';
$st .= '[DIR] | ';
$st .= ' | ';
$st .= '
';
unset($files[$nr]);
}
}
else
unset($files[$nr]);
}
foreach ($files as $file) {
$fullpath = $basedir.$dir.__DS__.$file;
if (!is_dir($fullpath)) {
$st .= '';
$st .= '| | ';
$st .= ''.$file.' | ';
$st .= ''.filesize($fullpath).' | ';
$st .= '';
$st .= 'Del';
$st .= ' | ';
$st .= '
';
}
}
$st .= '';
echo $st;
?>