my $SQL = "SELECT * FROM table WHERE " . param('whereClause');

##</code><code>##

  0; drop table;