CVE-2017-16849
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do?method=viewDashBoard forpage parameter.
Date published : 2017-11-16
http://code610.blogspot.com/2017/11/more-sql-injections-in-manageengine.html