if ( $q->param( 'submit') ) {
    $db_sth = $db_dbh->prepare( <<'    END_OF_SQL' ) ;
        update
          report
        set
          dbms_name   = ?,
          report_name = ?,
          report_desc = ?,
          db_name     = ?,
          db_username = ?,
          db_password = ?,
          sql_query   = ?
        where
          report_id   = ?
    END_OF_SQL
    $db_sth->execute(
        $q->param( 'dbms_name' ),
        $q->param( 'report_name' ),
        $q->param( 'report_desc' ),
        $q->param( 'db_name' ),
        $q->param( 'db_username' ),
        $q->param( 'db_password' ),
        $q->param( 'sql_query' ),
        $q->param( 'report_id' )
    ) or die $db_sth->errstr ;
}