crynobone
commented
13 years ago Should be related to this line hybrid/classes/auth/connection.php
if (!is_null($this->items['_hash']) and $this->items['_hash'] !== \Hybrid\Auth::add_salt($hash))
{
$this->reset();
}
When password is incorrect, the is_logged() function return true since static::$items has value already assigned. The function should not check the value of static::$items. Perhaps, the presence of session/cookie.