Hospital Management System (HMS) is a computer system that helps manage health care-related information and helps health care providers do their jobs efficiently. hospital Management System v1.0 is vulnerable to a SQL injection vulnerability that originates in the adminlogin. A SQL injection issue exists in the loginid parameter of the php page. An attacker could use this vulnerability to obtain sensitive database information.