Pman/Login.php

[Pman.Base] / Pman / Login.php

diff --git a/Pman/Login.php b/Pman/Login.php
index f0c30aa..72ce4fe 100644 (file)
--- a/Pman/Login.php
+++ b/Pman/Login.php
@@ -328,9 +328,11 @@ class Pman_Login extends Pman
         
         if(
             !empty($u->oath_key) &&
-           empty($_REQUEST['oath_password']) &&
-            !$u->checkTwoFactorAuthentication($_REQUEST['oath_password'])
-        ){
+           (
+               empty($_REQUEST['oath_password']) ||
+               !$u->checkTwoFactorAuthentication($_REQUEST['oath_password'])
+           )
+        ) {
             $this->jerror('LOGIN-BAD', 'You typed the wrong Username or Password  (3)');
             exit;
         }