diff --git a/core/Controller/LoginController.php b/core/Controller/LoginController.php
index 91f7fa0b25a8447105c72a7656fbe7141a4192cb..ffbcea0feddebb802673dacd0004ff5fa359b07b 100644
--- a/core/Controller/LoginController.php
+++ b/core/Controller/LoginController.php
@@ -202,7 +202,7 @@ class LoginController extends Controller {
 				$this->throttler->sleepDelay($this->request->getRemoteAddress());
 			}
 			$this->session->set('loginMessages', [
-				['invalidpassword']
+				['invalidpassword'], []
 			]);
 			// Read current user and append if possible - we need to return the unmodified user otherwise we will leak the login name
 			$args = !is_null($user) ? ['user' => $originalUser] : [];