A Hospital Management System (HMS) is a computerized system that helps manage healthcare-related information and helps healthcare providers do their jobs effectively. A SQL injection vulnerability exists in Hospital Management System version V1.0, which stems from the applicationβs inability to properly validate user input provided in the login ID and password fields during the login process, and can be exploited by an attacker to be able to inject malicious SQL code.