Hospital Management System (HMS) is a computer system that helps manage health care-related information and helps health care providers do their jobs efficiently.A file upload vulnerability exists in Hospital Management System version 1.0, which stems from a lack of validation of uploaded files in treatmentrecord.php lacks valid validation for uploaded files. An attacker could exploit this vulnerability to upload a malicious file and remotely execute arbitrary code.