Reply to post:

Authy 2FA app popped by simple, secret, code

Lee D

Sigh. Security 101.

Sanitise your inputs.

Do not act upon the data as if it's a filename, program name or anything else.

Don't pass off unsanitised data to other programs.

Don't allow directory traversal.

This isn't just "a slip", this is just atrocious coding. Stop using this program, because god-knows-what other basic security mistakes have been made elsewhere in its coding.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon