Index: forgon-core/src/main/java/com/forgon/xss/filter/XSSFilter.java
===================================================================
diff -u -r34613 -r34618
--- forgon-core/src/main/java/com/forgon/xss/filter/XSSFilter.java	(.../XSSFilter.java)	(revision 34613)
+++ forgon-core/src/main/java/com/forgon/xss/filter/XSSFilter.java	(.../XSSFilter.java)	(revision 34618)
@@ -37,8 +37,8 @@
 		System.out.println("request.getContentType()=" + request.getContentType());*/
 		XSSServletRequest xssRequest = new XSSServletRequest(httpServletRequest);
 		HttpServletResponse resp = (HttpServletResponse)response;
-		//QYSRMYY-42 修复渗透测试扫描出来的存储型和反射型XSS漏洞
-		Cookie[] cookies = xssRequest.getCookies();
+		//QYSRMYY-42 修复渗透测试扫描出来的存储型和反射型XSS漏洞(下面的代码可能会导致ie登录不成功,所以就将其注释掉)
+		/*Cookie[] cookies = xssRequest.getCookies();
 		if(cookies != null){
 			SimpleDateFormat sdf = new SimpleDateFormat("dd-MM-yyyy HH:mm:ss",Locale.CHINA);
 			for(Cookie cookie : cookies){
@@ -52,7 +52,7 @@
 				builder.append("Expires="+sdf.format(cal.getTime()));
 				resp.setHeader("Set-Cookie",builder.toString());
 			}
-		}
+		}*/
 		chain.doFilter(xssRequest, response);
 	}